Security Affairs

MAY 22, 2019

“We made an error when implementing this functionality back in 2005: The admin console stored a copy of the unhashed password. To be clear, these passwords remained in our secure encrypted infrastructure.” This practice did not live up to our standards. ” continues Google. Pierluigi Paganini.

Passwords 88

Passwords Encryption Access Cloud 88

Data Matters

FEBRUARY 26, 2019

power grid because “many of the violations involved long durations, multiple instances of noncompliance, and repeated failures to implement physical and cyber security protections.” They are a subset of the reliability standards and grid security rules enacted by NERC pursuant to delegated authority received from FERC. Final Rule ¶ 1.

Energy and Utilities 68

Energy and Utilities Compliance Cybersecurity Risk 68

Hunton Privacy

FEBRUARY 4, 2009

A recent federal court decision offers a detailed analysis of several theories of liability for violations of a privacy policy. During her visit, she provided Jackson Hewitt with confidential information such as her Social Security number, date of birth and driver’s license number. Jackson Hewitt Tax Service Inc.,

Privacy 40

Privacy Insurance Risk Access 40

Hunton Privacy

JUNE 16, 2009

A lawsuit that will soon commence in Arizona has the potential to alter the data breach liability landscape by making data security auditors liable for data breaches experienced by the companies they audit. In 2005, CardSystems revealed that it had experienced an information security breach that compromised forty million payment cards.

Security 40

Security Data breaches Information Security Encryption 40

Hunton Privacy

APRIL 1, 2016

2005 , as amended by Amendment No. 2005 (the “Bill”), which makes a number of changes to the state’s data breach notification statute, Tenn. On March 24, 2016, Tennessee Governor Bill Haslam signed into law S.B. Code § 47-18-2107. The amendments take effect on July 1, 2016.

Data breaches 45

Data breaches Encryption Access IT 45

Hunton Privacy

JULY 28, 2016

In announcing the settlement with OHSU, OCR Director Jocelyn Samuels noted that “OHSU had every opportunity to address security management processes that were insufficient.” The resolution agreement requires OHSU to pay $2.7 submit annual compliance reports to OCR for a period of three years. The resolution agreement requires UMMC to pay $2.75

Compliance 40

Compliance Security awareness Risk Encryption 40

Hunton Privacy

JULY 5, 2013

The Directive builds on rules that have been in force since 2005 (the Council Framework Decision 2005/222/JHA on attacks against information systems). The European Commission determined that a new legislative instrument was needed to address emerging threats that were not considered when the 2005 Framework Decision was adopted.

Cybersecurity 40

Cybersecurity Passwords Access Information Security 40

Hunton Privacy

OCTOBER 20, 2009

The FTC alleged violations of the Children’s Online Privacy Protection Act (“COPPA”) and Section 5 of the FTC Act. This agreement, which expands the company’s obligations under the original consent order, follows a security breach that occurred in 2008. Yesterday, the FTC announced that ChoicePoint, Inc.

Privacy 40

Privacy Sales Information Security Marketing 40

Data Matters

JANUARY 25, 2018

In the aftermath of a significant data security incident, a best practice is to hire a third-party forensic firm, working at the direction of counsel, to review how the breach occurred, what data may have been accessed, whether the incident has ceased and other important issues directly relevant to legal counsel’s review. Bilzerian , 926 F.2d

Data breaches 60

Data breaches Communications Financial Services Privacy 60

eSecurity Planet

DECEMBER 3, 2021

Here are the top Twitter accounts to follow for the latest commentary, research, and much-needed humor in the ever-evolving information security space. Security enthusiast and Linux evangelist Binni Shah consistently offers valuable tutorials, guides, and insights for the cybersecurity community. Binni Shah | @binitamshah.

Cybersecurity 139

Cybersecurity e-Discovery Passwords Information Security 139

Data Matters

AUGUST 17, 2021

The Guidance is not intended to serve as a comprehensive framework but rather provides financial institutions with examples of effective risk management practices without endorsing any specific information security framework or standard. The 2005 guidance replaced a 2001 version of the same document.

Authentication 88

Authentication Access Risk Financial Services 88

IT Governance

JUNE 1, 2023

On this page, you will find all our usual information breaking down the month’s security incidents. Meanwhile, you can subscribe to our Weekly Round-up to receive the latest cyber security news and advice delivered straight to your inbox. However, we’ve decided to consolidate our records onto a single page.

Data breaches 122

Data breaches Insurance Personal data Ransomware 122

Hunton Privacy

JUNE 29, 2020

Zeyn Bhyat of ENSafrica reports that on June 22, 2020, it was announced that South Africa’s comprehensive privacy law known as the Protection of Personal Information Act, 2013 (the “POPIA”) will become effective on July 1, 2020.

Compliance 85

Compliance Privacy GDPR Personal data 85

Hunton Privacy

FEBRUARY 1, 2013

On January 28, 2013, the London office of Hunton & Williams marked European Data Privacy Day with the launch of the fourth edition of Data Protection Law & Practice , written by Senior Attorney Rosemary Jay. During her tenure, people began to speak of “privacy.”. The Emergence of the “Surveillance Society” – 2002 to 2009.

Data Privacy 40

Data Privacy Privacy Computer and Electronics Education 40

ForAllSecure

JANUARY 22, 2023

Having a common framework around vulnerabilities, around threats , helps us understand the information security landscape better. Literally, how the rebellion fighting the Empire has echoes in how we approach and mitigate information security threats. And he came up to me and he said, I'm not a security person.

Cloud 40

Cloud Security IT Authentication 40

ForAllSecure

JULY 6, 2022

I’m talking about cybercrime unicorns, talking the fog of cyberwar among nation states, and about a new book that I think will be on the shelves of every information security professional later this summer. Vamosi: The slogan of the RSA Conference is “Where the World Talks Security,” and, in general.

Ransomware 40

Ransomware Military Government Security 40