Hogan Lovells is introducing a new multimedia series: Welcome to Hogan Lovells’ The Data Chronicles, brought to you by the firm’s global Privacy and Cybersecurity practice. This multimedia series is dedicated to the ever-changing legal and regulatory developments in the world of data, privacy, and cybersecurity. Insider threat remains one of the most challenging cybersecurity…
Category: Commentaries and Analyses
Should Ransom Payments Be Made Illegal?
October 24, 2023 — The Ransomware Task Force was created in 2021 to bring together government, private industry and civil society to create strategies to fight cybercriminal gangs extorting organizations. This year has been challenging with rising attacks, but Megan Stifel of the Institute for Security and Technology says progress is being made. In this…
Inadequate security measures: the Guarantor sanctions an ASL. The healthcare facility had suffered a ransomware attack
The following is a Google machine translation of a post by Italy’s data protection regulator. It strikes me yet again how entities covered by the GDPR get fined for poor or inadequate security practices that should — but generally do not — incur monetary penalties here: Sanction by the Privacy Guarantor of 30,000 euros to a…
Hackers escalate: leak 200k CCSD students’ data; claim to still have access to CCSD email system
Clark County School District (CCSD) in Nevada informed parents and employees that they became aware of a “cybersecurity incident” on October 5. Three weeks later, the district had not fully recovered from the attack and parents were complaining about the district’s lack of transparency about what was stolen in the breach. Disturbingly, while the district…
France says Russian state hackers breached numerous critical networks
Bill Toulas reports: The Russian APT28 hacking group (aka ‘Strontium’ or ‘Fancy Bear’) has been targeting government entities, businesses, universities, research institutes, and think tanks in France since the second half of 2021. The threat group, which is considered part of Russia’s military intelligence service GRU, was recently linked to the exploitation of CVE-2023-38831, a remote…
Exclusive: Clark County School District student data begins to leak; CCSD doesn’t comment
Tiffany Lane reports: Problems continue for Clark County School District families and staff about a week and a half after being notified of a cyber security incident that happened earlier this month. Some parents say they received an email Wednesday with private information about their children. While they do not know if it is related to the…