Éloïse Gratton writes: Last spring I was invited to testify and present with Dr. Avner Levin before the Standing Committee on Access to Information, Privacy and Ethics, House of Commons, in the context of their study conducted on the “Growing Problem of Identity Theft and its Economic Impact“. I discussed why there are no real incentives for Canadian businesses…
Category: Commentaries and Analyses
Politicians Cynically Using JP Morgan Hack To Try To Pass Laws To Diminish Your Privacy
Mike Masnick writes: So, as you probably heard last week, JP Morgan revealed more details of how it had been hacked, noting that the number of households impacted shot up to 76 million, thus impacting a pretty large percentage of Americans. The hack involved getting access to customer names, addresses, phone numbers and emails. It doesn’t…
CUNA Launches Data Security Advocacy Site
Nicholas Ballasy reports: CUNA president/CEO Jim Nussle announced the launch of StopTheDataBreaches.com, which consumers can use to call on Congress to hold retailers accountable for data breaches. The website urges Congress to take action by passing data security legislation. Consumers are able to write their legislators through the website with the option to use the form letter…
Dear FTC
Why is THIS type of breach still happening? How many more customers will be put at risk of ID theft before Experian deals with what has been a too-frequent problem with client login credentials being misused? I reported one of these breaches in January. I reported one in May. I filed a formal complaint asking FTC to investigate…
California’s Latest Amendments to Its Data Security Breach Notification Law – Much Ado about Nothing?
Tanya Forsheit and M. Scott Koller of BakerHostetler have a good write-up of the new provisions in California law and how the language of AB 1710 has led to some confusion as to whether California now requires breached entities to offer free credit monitoring protection for 12 months if certain types of personal information are…
On Accuracy in Cybersecurity
Derek Bambauer writes: I have a new article on how to address questions of accuracy in cybersecurity up on SSRN. It’s titled Schrödinger’s Cybersecurity; here’s the abstract: Both law and cybersecurity prize accuracy. Cyberattacks, such as Stuxnet, demonstrate the risks of inaccurate data. An attack can trick computer programs into making changes to information that are…