Beth Kutscher reports: The healthcare information technology sector is hailing healthcare-specific cybersecurity provisions that have made their way into the massive omnibus legislation that Congress passed on Friday. The $1.1 trillion spending and tax extender bill, which is now on its way to President Barack Obama, includes language that closely follows the recommendations from the Healthcare Information…
Category: Federal
House Financial Services Committee Passes Data Security Bill
NACS writes: On December 8, the House Financial Services Committee convened to mark up and subsequently pass legislation opposed by NACS: the Data Security Act of 2015 (H.R. 2205). Introduced by Representative Randy Neugebauer (R-TX), the bill would establish a national data security and breach notification standard that would impose enormous costs on most industries…
EU law makers reach deal on new network and information security rules
Out0Law.com reports: Representatives from the European Parliament and Council of Ministers reached a political consensus on the wording of a new Network and Information Security (NIS) Directive after nearly two years of negotiations. The draft Directive, still to be formally approved by MEPs and the Council, will require businesses subject to it to put in…
Schoolboy in TalkTalk case can take identity challenge case
News Letter reports: A Co Antrim schoolboy arrested over the TalkTalk cyber attack has won the right to challenge an alleged failure to implement legislation that would protect him from media identification. He was granted leave at the High Court in Belfast today to seek to judicially review the Department of Justice over claims it…
AU: Telcos and security agencies exempted from data breach rules in draft bill
Paul Farrell reports: Australian law enforcement agencies and telcos that suffer certain types of data breaches are likely to be exempt from rules requiring them to notify the people affected, under a draft bill. The federal government published on Thursday an exposure draft of mandatory data breach laws that would compel Australian companies – and in some…
Court: Breaking Your Employer’s Computer Policy Isn’t a Crime
Jamie Williams writes: The United States Court of Appeals for the Eleventh Circuit issued an opinion rejecting the government’s attempt to hold an employee criminally liable under the federal hacking statute—the Computer Fraud and Abuse Act (“CFAA”)—for violating his employer-imposed computer use restrictions. The decision is important because it ensures that employers and website owners don’t have the power…