article thumbnail

Connecticut Tightens its Data Breach Notification Laws

Data Protection Report

The amendment: Expands the definition of “personal information”; Shortens the notification deadline after discovery of a breach from 90 to 60 days; Removes the requirement to consult with law enforcement as part of a risk assessment; Deems compliant any person subject to and in compliance with HIPAA and HITECH; and.

article thumbnail

EU bodies agree on new EU export rules for dual-use technology

Security Affairs

EU lawmakers and the European Council aim to update controls for the sale of dual-use solutions such as surveillance spyware, facial recognition systems and drones to prevent authoritarian government abusing them for censorship and to persecute political opponents and dissidents violating human rights.

Sales 101
Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

The U.S. FCC considers Huawei and ZTE as national security threats

Security Affairs

Last week China accused the US government of “oppressing Chinese companies” after U.S. The Federal Communications Commission blocked the Chinese companies from receiving subsidies from a government fund. “We The FCC’s move definitively bans U.S. regulators declared Huawei and ZTE to be national security threats.

article thumbnail

Vermont’s Amendments to Data Breach Law and New Student Privacy Law Effective July 1, 2020

Hunton Privacy

The amendments to Vermont’s Security Breach Notice Act include expanding the definition of Personally Identifiable Information (“PII”), expanding the definition of a breach to include login credentials and narrowing the permissible circumstances under which substitute notice may be used.

article thumbnail

A Cyber Insurance Backstop

Schneier on Security

After Merck filed its $700 million claim, the pharmaceutical giant’s insurers argued that they were not required to cover the malware’s damage because the cyberattack was widely attributed to the Russian government and therefore was excluded from standard property and casualty insurance coverage as a “hostile or warlike act.”

article thumbnail

Security Vulnerabilities in US Weapons Systems

Schneier on Security

The US Government Accounting Office just published a new report: " Weapons Systems Cyber Security: DOD Just Beginning to Grapple with Scale of Vulnerabilities " (summary here ). From the summary: Automation and connectivity are fundamental enablers of DOD's modern military capabilities.

article thumbnail

New Connecticut Breach Notification Requirements and Cybersecurity Safe Harbor Effective October 2021

Hunton Privacy

In passing the law, Connecticut joins a number of other states in expanding the definition of “personal information” in its data breach notification statute. requiring “preliminary substitute notice” to individuals if a business cannot provide direct notification within the 60-day notification timeframe. Cybersecurity Safe Harbor (HB 6607).