Brian Wasuna reports: When financial institutions in Kenya started recording increased cyber-attacks in 2010, it was believed the country’s detectives would easily stamp out the crime. Back then, most cybercrime incidents involved hackers stealing small amounts of money that were near impossible to detect, before graduating to big money heists, in a what is known…
Category: Commentaries and Analyses
Education Industry at Higher Risk for IT Security Issues Due to Lack of Remote and Hybrid Work Policies
POWAY, Calif., July 22, 2021 /PRNewswire/ — Apricorn, the leading manufacturer of software-free, 256-bit AES XTS hardware-encrypted USB drives, today announced findings for the education sector from the Apricorn 2021 Global IT Security Survey. According to the survey, the education industry has a greater risk for cybersecurity breaches and data loss than other industries due to limited IT security…
NY Comptroller Audit: Mount Pleasant Central School District – Information Technology User Accounts (2021M-31)
When, if ever, will there be actual consequences for school districts that still do not practice basic security hygiene? Comptroller DiNapoli has released yet another k-12 district IT audit where the are results so bad that they won’t make them public. From the state’s summary: Audit Objective Determine whether Mount Pleasant Central School District (District)…
Q2 Ransom Payment Amounts Decline as Ransomware becomes a National Security Priority
Seen on Coveware: If you had told us at the beginning of 2021 that then President elect Biden would be having a nose to nose face off with Putin over ransomware, we would have speculated that some serious escalation must have occurred. In reality, the lackadaisical indifference of one threat actor (DarkSide) set off a…
Connecticut Enacts Safe Harbor From Punitive Damages In Data Breach Cases
Jason Gavejian and Joseph Lazzarotti of JacksonLewis write: Effective October 1, 2021, Connecticut becomes the third state with a data breach litigation “safe harbor” law (Public Act No. 21-119), joining Utah and Ohio. In short, the Connecticut law prohibits courts in the state from assessing punitive damages in data breach litigation against a covered defendant…
AIG unit must defend Texas retailer Landry’s in data breach case
Judy Greenwald reports: A federal appeals court reversed a lower court Wednesday and ruled an American International Group Inc. unit is obligated to defend a retailer in connection with a data breach. Houston-based Landry’s Inc., which operates retail properties including restaurants, hotels and casinos, discovered a data breach that occurred between May 2014 and December…