Alston & Bird write: Oregon has updated its data breach notification statute to broaden the definition of personal information that will trigger notice to individuals and add the requirement to notify the state’s Attorney General of certain breaches. Oregon Governor Kate Brown signed into law SB601 on June 10, and it was enrolled on June 15. The…
Category: Of Note
Sony Fails to Shake Data Breach Suit
Marisa Kendall reports: A federal judge ruled Monday that employees of Sony Pictures Entertainment Inc. whose personal information was exposed in last year’s data breach have standing to sue even if they can’t prove that information was used by criminals. It’s often difficult for lawyers to successfully show collective harm in data breach class actions…
The OPM Hack and the New DOD Law of War Manual
Kristen Eichensehr writes: Last Friday was a big day in cybersecurity news. OPM announced that, in addition to the compromise of the personnel information of federal employees revealed on June 4, Chinese hackers also breached a database containing millions of security clearance forms. Meanwhile, on the other side of the Potomac, the Department of Defense…
BAE Systems first notifying employees of extranet site network attack in 2014
On June 4, BAE Systems Information and Electronic Systems Integration Inc. notified the New Hampshire Attorney General’s Office that they had experienced a network attack on an extranet site in 2014. Due to the nature and scope of the attack, they provided a data set to the Pentagon’s Damage Assessment Management Office (DAMO), who subsequently…
Rogue Equifax employee improperly accessed Rite Aid employees’ information
Pharmacy giant Rite Aid receives online paystubs, W-2s, and self-service applications from Equifax. In early March, Equifax notified Rite Aid that it had detected suspicious activity on some Rite Aid employee accounts. Equifax’s investigation resulted in a subsequent notification to Rite Aid on April 30 that an employee had misused their privileged access to reset…
Updates on OPM breach(es)
Some bits ‘n pieces of the follow-ups on the OPM hack… Malia Zimmerman reports: In addition to data from the OPM breach, Roberts said a new OWL search has uncovered another 9,500 government log-in credentials stolen this week from a variety of county, state and federal agencies across the nation, for everything from the Obamacare…