Clarissa Hawes reports an update to a previously reported breach: A trucking company has filed a lawsuit against Total Quality Logistics (TQL) over its recent data breach, alleging the company was negligent after hackers attacked its computer systems in February. Owner Charles Newman, whose trucking company is not named in the filing, claims TQL, headquartered…
New York SHIELD Act’s Reasonable Safeguard Requirements Became Effective on March 21st —Is Your Company Ready?
Despite the pandemic, life — and most laws — go on. Micaela McMurrough, Caleb Skeath and Micha Nandaraj Gallo of Covington and Burling posted a reminder yesterday: On March 21, 2020, the data security requirements of the New York SHIELD Act became effective. The Act, which amends New York’s General Business Law, represents an expansion of New…
Liar, Liar, Pants on Fire? Did Maze Team go back on its word to leave medically related facilities alone?
We also stop all activity versus all kinds of medical organizations until the stabilization of the situation with virus. — Maze Team, March 18, 2020. Three days after issuing a press release claiming that they would stop all activity against all kinds of medical organizations, Maze Team appears to have gone back on its word….
NIST asks for public comments on new cybersecurity risk management document
Andrew Eversden reports: The National Institute of Standards and Technology is asking for public comments on a new report that provides insight into how organizations can integrate cybersecurity into enterprise risk management. The document, titled “NIST-Interagency Report 8286 Integrating Cybersecurity and Enterprise Risk Management,” advises organizations on how to improve the cybersecurity risk information they…
Report: unidentified database exposes 200 million Americans
The CyberNews research team reports: The CyberNews research team uncovered an unsecured database owned by an unidentified party, comprising 800 gigabytes of personal user information.The database in question was left on a publicly accessible server and contained more than 200 million detailed user records, putting an astonishing number of people at risk. On March 3, 2020, the…
COVID-19 Cybersecurity Advice: FTC, NIST, and CISA Release Guidance on Secure Teleworking and Critical Infrastructure Jobs
Ashden Fein, Trisha Anderson, Libbie Canter and Caleb Skeath of Covington & Burling write: In response to the drastic increase of U.S. employees working remotely, the U.S. Federal Trade Commission (“FTC”) and the U.S. National Institute of Standards and Technology (“NIST”) have both issued guidance for employers and employees on best practices for teleworking securely. …