Tim Diacono reports: Prime Minister Robert Abela announced plans to update the law to safeguard and regulate the practice of ‘white hat’ ethical hacking. In an interview on ONE this morning, Abela warned that a gap exists in the country’s legislative framework surrounding ethical hacking and cybersecurity. The Malta Digital Innovation Authority has drafted proposed…
Category: Legislation
The Protection of Critical Infrastructure (Computer System) Bill: Hong Kong’s first specific cybersecurity legislation
Tommy Liu and Kenneth Cheung of Hogan Lovells write: In late June 2024, the Security Bureau of the Hong Kong SAR Government (the “Government”) proposed the first specific cybersecurity legislation in Hong Kong, tentatively entitled the Protection of Critical Infrastructure (Computer System) Bill (the “Bill”), to strengthen the security of the computer systems of critical…
FTC Takes Action Against Security Camera Firm Verkada over Charges it Failed to Secure Videos, Other Personal Data and Violated CAN-SPAM Act
August 30, 2024 – The Federal Trade Commission will require security camera firm Verkada to develop and implement a comprehensive information security program to settle allegations the company failed to use appropriate information security practices, which allowed a hacker to access customers’ security cameras. Under a proposed order, which must be approved by a federal…
Curbing liabilities for hacked health systems
Daniel Payne, Ben Leonard, and Chelsea Cirruzzo report: THE LIABILITY QUESTION — State lawmakers, concerned by what they consider to be overreaching class-action lawsuits against health care organizations over data breaches, are moving to curb liability for them, Ben reports. Tennessee is the latest in a string of states to move to reduce liability for organizations that adopt…
FCC Enforcement Bureau Settles With Liberty Latin America for Data Breach Notification Violations
Full Title: In the Matter of Liberty Latin America Limited, Liberty Mobile Puerto Rico Inc., Liberty Mobile USVI Inc. Document Type: Consent Decree Order Bureau(s): Enforcement Description FCC EB settles with Liberty for $100K civil penalty resolving an investigation into whether Liberty failed to report a data breach in a timely manner as required and failed…
Malaysia’s government to amend Personal Data Protection Act to require notification of data breaches
The Sun reports: The government is planning to amend the Personal Data Protection Act of 2010 to include breach notification requirements that compel companies to inform authorities when a data breach happens in commercial transactions, said Digital Minister Gobind Singh Deo. Gobind said his ministry proposes to table the amendment at the next sitting of…