Collaborate Disseminate
Micaela McMurrough and Caleb Skeath of Covington & Burling write: Following up on the recent release by the New York Department of Financial Services (“NYDFS”) of an updated proposed second amendment to its “first-in-the-nation” Cybersecurity Regul… Continue reading Proposed Second Amendment to NYDFS Cybersecurity Regulations: Comments Due August 14
Christopher Brown reports: Court Ventures Inc. properly beat a suit alleging it failed to notify victims of a security breach that it became aware of only after its sale to Experian Data Corp., a California appellate court ruled. Former owners of compu… Continue reading Company Bought by Experian Needn’t Report Pre-Sale Data Breach
John Bandler reports: July 1st was a cybersecurity milestone for every New York attorney who now needs to complete an hour of cybersecurity training before renewing their law license. New York Courts in their role supervising and licensing attorneys re… Continue reading Attorneys on alert for cybersecurity threats: New York’s new CLE training requirement
There are so many webinars each week that I generally don’t sign up for many or even post links to them, but this one really caught my eye because there have been so many recent changes at the state level. The New Breed of State Health Privacy La… Continue reading Webinar – The New Breed of State Health Privacy Laws
Gerald L. Maatman, Jr., Alex W. Karasik, and George J. Schaller of Duane Morris write: In Steinmetz et al. v. Brinker International, Inc., No. 21-13146, 2023 U.S. App. LEXIS 17539 (11th Cir. July 11, 2023), the Eleventh Circuit vacated the district cou… Continue reading Eleventh Circuit Requests Refined Class Definition For Data Breach Class Action
Scott Ikeda reports: The issue of banning ransomware payments has been contentious and hotly debated in governments throughout the world in the last few years, particularly as the problem seemed to grow out of control during the Covid-19 pandemic. In t… Continue reading Patchwork of US State Regulations Becomes More Complex as Florida, North Carolina Ban Ransomware Payments
By Hunton Andrews Kurth’s Privacy and Cybersecurity On June 10, 2022, New York became the first state to require attorneys to complete at least one credit of cybersecurity, privacy and data protection training as part of their continuing legal educatio… Continue reading New York Becomes First State to Require CLE in Cybersecurity, Privacy and Data Protection
Patrick H. Haggerty and Elise Elam of BakerHostetler write: On July 29, the New York Department of Financial Services (NYDFS) released Draft Amendments to its Part 500 Cybersecurity Rules that include a number of significant amendments to the rules, in… Continue reading NYDFS Proposed Amendments to Its Cybersecurity Rules
It seems this was the week for following up on Carnival Corporation breaches. Earlier this week, state attorneys general announced a $1.25 million multistate settlement with the cruise line over a 2019 data breach first disclosed in 2020. But there was… Continue reading Expensive week for Carnival Corp: a $1.25 million settlement with states over one breach, then a $5 million settlement with New York for violating state cybersecurity regulation
Hunton Andrews Kurth writes: On May 27, 2022, Vermont Governor Phil Scott signed H.515, making Vermont the twenty-first state to enact legislation based on the National Association of Insurance Commissioners Insurance Data Security Model Law (“MDL-668”… Continue reading Vermont Enacts Insurance Data Security Law