Collaborate Disseminate
Sindhu Ajay reports: The US Office of the Comptroller of the Currency, the Federal Reserve Board, and the Federal Deposit Insurance Corporation Friday proposed a new computer-security incident notification requirement for banking organizations and thei… Continue reading Federal financial regulators propose computer-security incident notification for banks
Gerard O’Dwyer reports: The huge data security breach and cyber-ransom attack at Finland’s Vastaamo Psychotherapy Centre has provoked a swift response from the government, which is primed to introduce more rigid laws and measures to protect the c… Continue reading In wake of horrific Vastaamo breach, Finnish government tables laws to protect data from cyber criminals
Today, the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) released its 2016-2017 HIPAA Audits Industry Report that reviewed selected health care entities and business associates for compliance with certain provi… Continue reading OCR Releases Its 2016-2017 Audit Report on Health Care Industry Compliance with the HIPAA Rules
It feels like it’s been a while since we’ve seen an FTC data security case. Today, they issued a press release about a settlement stemming from SkyMed International’s misconfigured elastic search instance that exposed more than 130,0… Continue reading Company that Provides Travel Emergency Services Settles FTC Allegations it Failed to Secure Sensitive Consumer Data
Seetha Ramachandran, Nolan Goldberg and Hena M. Vora of Proskauer write: It is increasingly common for Ransomware attacks to be associated with large sophisticated cyber-criminal organizations, with a central entity providing the tools, training, and a… Continue reading Regulatory Crackdown on Ransomware
15th December 2020 The Data Protection Commission (DPC) has today announced a conclusion to a GDPR investigation it conducted into Twitter International Company. The DPC’s investigation commenced in January, 2019 following receipt of a breach notificat… Continue reading Data Protection Commission announces decision in Twitter inquiry
To Report or Not Report Health Care Data Breaches December 11, 2020 Amanda Walden, PhD, RHIA, CHDA , Kendall Cortelyou-Ward, PhD , Meghan Hufstader Gabriel, PhD , Alice Noblin, PhD, RHIA, CCS, PMP The American Journal of Managed Care, December 2020, Vo… Continue reading Survey: To Report or Not Report Health Care Data Breaches
Eric Carlson, Yan Luo, Min He and Zhijing Yu of Covington & Burling write: On December 2, 2020, China’s Ministry of Commerce (“MOFCOM”), State Cryptography Agency (“SCA”), and the General Administration of Customs (“Customs”) jointly issued three d… Continue reading China Publishes Lists and Rules Related to Import and Export of Commercial Encryption
U.S. Federal Cybersecurity Today Computer security regulations have come a long way from their early beginnings. Even before the Federal Information Security Management Act (FISMA), there was the Computer Security Act of 1987 (CSA). The Computer Secur… Continue reading A Look at the Computer Security Act of 1987
Lydia Beyoud reports: The CFPB is ready to shape the next phase of open banking in the U.S. as it develops standards for how vast amounts of consumer financial data is shared among banks, fintech apps, and data transfer companies. Financial data sharin… Continue reading CFPB to Play Peacemaker in Battle for Consumers’ Financial Data