Jonathan Greig reports: Hospitals and other healthcare businesses would be required to adopt minimum cybersecurity standards and face annual audits under new legislation introduced by two prominent senators on Thursday. The Health Infrastructure Security and Accountability Act, announced by Sens. Ron Wyden (D-OR) and Mark Warner (D-VA), would provide $1.3 billion for the Department of…
Category: Legislation
Websites exposing Aadhaar and PAN details blocked by India’s MeitY
Mint reports: The Government of India has blocked several websites that were found to be exposing sensitive personal information, including Aadhaar and PAN card details of Indian citizens. This action was taken by the Ministry of Electronics and Information Technology (MeitY). The Unique Identification Authority of India (UIDAI) has also filed an official complaint with…
Silence may not be golden: Visiting Physicians Network still silent one year after alleged data breach?
In September 2023, DataBreaches reported on an alleged ransomware attack involving Visiting Physician’s Network in Texas. The report provided screenshots of data leaked on the Threeam gang’s leak site and noted that Visiting Physician’s Network did not respond to inquiries about the breach. It is now one year later. DataBreaches has found no substitute notice,…
Malta’s Prime Minister Announces Legal Reform To Safeguard Ethical Hacking
Tim Diacono reports: Prime Minister Robert Abela announced plans to update the law to safeguard and regulate the practice of ‘white hat’ ethical hacking. In an interview on ONE this morning, Abela warned that a gap exists in the country’s legislative framework surrounding ethical hacking and cybersecurity. The Malta Digital Innovation Authority has drafted proposed…
The Protection of Critical Infrastructure (Computer System) Bill: Hong Kong’s first specific cybersecurity legislation
Tommy Liu and Kenneth Cheung of Hogan Lovells write: In late June 2024, the Security Bureau of the Hong Kong SAR Government (the “Government”) proposed the first specific cybersecurity legislation in Hong Kong, tentatively entitled the Protection of Critical Infrastructure (Computer System) Bill (the “Bill”), to strengthen the security of the computer systems of critical…
FTC Takes Action Against Security Camera Firm Verkada over Charges it Failed to Secure Videos, Other Personal Data and Violated CAN-SPAM Act
August 30, 2024 – The Federal Trade Commission will require security camera firm Verkada to develop and implement a comprehensive information security program to settle allegations the company failed to use appropriate information security practices, which allowed a hacker to access customers’ security cameras. Under a proposed order, which must be approved by a federal…