Scott Ikeda reports: The Department of Homeland Security (DHS) has issued a broad warning to all American businesses about potential data theft by partners in China that have connections to the government. The advisory outlines “PRC legal regimes and known PRC data collection practices” that could present a risk to any organization not based in the…
Category: Commentaries and Analyses
Privacy Litigation 2020 Year in Review: Data Breach Litigation
Nancy R. Thomas, Zachary Maldonado, and Ani Oganesian of Morrison Foerster write: Add a 270% increase in data breaches to the long list of unprecedented challenges in 2020. Cybersecurity is on the short list of major risks facing companies. And when a security incident happens, class actions often follow. Although data breach class actions are…
Don’t dox yourself by tweeting about data breaches
I am posting this because, sadly, it seems that some people DO need to read this, although most of them probably are not readers of my site. Ben Dickson cites reactions to the recent disclosure of the NetGalley breach to highlight errors users may make in discussing the breach on social media: And in their…
Joint Statement by the Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), the Office of the Director of National Intelligence (ODNI), and the National Security Agency (NSA)
January 5 2021 — On behalf of President Trump, the National Security Council staff has stood up a task force construct known as the Cyber Unified Coordination Group (UCG), composed of the FBI, CISA, and ODNI with support from NSA, to coordinate the investigation and remediation of this significant cyber incident involving federal government networks….
“Without Undue Delay, Part 1:” Update on earlier ransomware cases
In November, DataBreaches.net published a commentary arguing that patients need to be notified sooner of ransomware dumps even if HIPAA would seem to allow up to 60 days. As a companion to that piece, this site looked at 30 claimed ransomware attacks on U.S. healthcare entities that had been revealed on dedicated leak sites by…
Attacks targeting healthcare organizations spike globally as COVID-19 cases rise again– Researchers
Check Point writes: At the end of October 2020, we reported that hospitals and healthcare organizations had been targeted by a rising wave of ransomware attacks, with the majority of attacks using the infamous Ryuk ransomware. This followed a Joint Cybersecurity Advisory issued by the CISA, FBI and HHS, which warned of an increased and imminent cybercrime threat to US hospitals…