The Information Commissioner’s Office has really been busy handing out fines. Have you seen any monetary penalties imposed by regulators on police departments here in the U.S.? No, you haven’t, right? Gloucestershire Police has been fined £80,000 by the Information Commissioner’s Office (ICO) after sending a bulk email that identified victims of non-recent child abuse….
Category: Of Note
Yahoo! UK fined £250,000 by ICO after systemic failures put customer data at risk
From the ICO’s office: Yahoo! UK Services Limited has been fined £250,000 by the Information Commissioner’s Office (ICO) following a cyber-attack in November 2014. The incident was publicly disclosed in September 2016, almost two years after it had taken place. Because of when the breach happened, the ICO’s investigation was carried out under the Data…
74 Arrested in Coordinated International Enforcement Operation Targeting Hundreds of Individuals in Business Email Compromise Schemes
74 Arrested in Coordinated International Enforcement Operation “Wire Wire,” Targeting Hundreds of Individuals in Business Email Compromise Schemes 42 Alleged Fraudsters Arrested in the United States Federal authorities announced today a significant coordinated effort to disrupt Business Email Compromise (BEC) schemes that are designed to intercept and hijack wire transfers from businesses and individuals, including…
Yahoo’s EU regulator orders privacy changes over data breach
Padraic Halpin reports: Yahoo’s European regulator has ordered it to make privacy changes following a probe into what it said was one of the largest ever data breaches to impact EU citizens. […] It ordered the internet company to take specified actions, including ensuring that all its data protection policies take account of the applicable…
Eleventh Circuit Vacates FTC Cybersecurity Order against LabMD
Attorneys at Ropes & Gray, the law firm representing LabMD in LabMD vs. FTC, write: On June 6, 2018, at the urging of Ropes & Gray, the U.S. Court of Appeals for the Eleventh Circuit vacated an order that the Federal Trade Commission (the “FTC”) had imposed on LabMD, Inc. (“LabMD”) to overhaul the cancer…
There’s a big problem for the FTC lurking in 11th Circuit’s LabMD data-security ruling
Alison Frankel writes about what she calls the less obvious takeaway from the 11th Circuit’s LabMD opinion: FTC enforcement actions for unfair practices cannot be based just on consumer injury, even “substantial” injury. This is going to get wonky, but, trust me, it’s what cybersecurity defense lawyers are already buzzing about. Read more on Reuters….