Breach prevention Archives

The Impact of Data Security Incident Trends on Commercial Transactions

September 17, 2021
Editorial Team
Breach Notification, Breach prevention, Breach response, Compliance, Consumer Privacy, Cybersecurity, Data Protection, Data Security, Privacy, Ransomware, US Regulatory

The 2021 edition of BakerHostetler’s annual Data Security Incident Response Report – a report based on the firm’s experience with data security incident response and litigation over the past year – features a number of important insights previously covered on this blog including trends in global breach notification, healthcare industry risks and ransomware. The Report…

Become a member to access this content.

How Cybersecurity Frameworks Can Protect Your Organization (Even in the Event of a Breach)

September 10, 2021
Editorial Team
Breach Notification, Breach prevention, Breach response, Compliance, Consumer Privacy, Cybersecurity, Data Privacy, Data Protection, Federal Trade Commission (FTC), NIST, Penalties and Enforcement, Privacy, State Laws

It’s certainly no secret how damaging data breaches can be for organizations today. And if lost revenue and a tarnished reputation aren’t enough to make you want to act, your organization could face punitive damages if you fail to protect your customers’ private information. Yes, that’s right—steep fines imposed by regulatory agencies can await those…

Become a member to access this content.

SEC Doubles Down on Safeguards Rule Enforcement

September 9, 2021
Tim Crino
Banks, Breach Notification, Breach prevention, Breach response, Broker Dealers, Compliance, Cybersecurity, SEC

The Securities and Exchange Commission issued sanctions against three financial services companies last week. The sanctions came in response to a series of email-takeover attacks in which Personally Identifiable Information (PII) was exposed. In each case, the SEC found that the firms failed to implement proper cybersecurity measures against breaches. Each firm was found responsible…

Become a member to access this content.

Infrastructure Bill Allocates Nearly $2 Billion to Cybersecurity

August 12, 2021
Tim Crino
Breach Notification, Breach prevention, Breach response, Congress, Cybercrime, Cybersecurity, Federal Trade Commission (FTC), Governance, Legislation

On Tuesday, the U.S. Senate approved a $1 trillion infrastructure package, which it has passed along to the House for approval. The package includes a variety of bills that allocate spending toward critical infrastructure, including roads, railways, bridges, electric vehicles, and telecom companies. The package also allocates more than $1.9 billion toward cybersecurity. The move…

Become a member to access this content.

Key Takeaways From Verizon’s 2021 Data Breach Report

If you haven’t combed through all 119 pages of Verizon’s 2021 Data Breach Investigations Report, that’s understandable. However the report contains valuable insight for compliance professionals, so ADCG pulled out the relevant takeaways–like the fact that banks are the most commonly discussed target in hacker forums and marketplaces, and that financially motivated cybercrime is on…

Become a member to access this content.

2020 News in Review

Week Ending December 28 ICO Warns SolarWinds Victims to Report Breaches The United Kingdom’s Information Commissioner’s Office (ICO) has issued a warning to organizations compromised by the SolarWinds breach. The breach, which was carried out by Russian hackers, affected more than 18000 organizations worldwide. ICO requires UK data controllers subject to NIS regulations to report…

Become a member to access this content.

What We Can Learn From the SolarWinds Breach

December 22, 2020
Amy Willcox
Breach prevention, Breach response, Business Continuity, Consumer Privacy, Cyber Fraud, Cybercrime, Cybersecurity, Data Privacy, Data Protection, Government Contracting, Privacy, Third Party Compliance

SolarWinds, a network management software company, found itself the direct victim of an insidious malware breach last week that had been in the works for months. The hack involved the installation of malware onto an updated version of their software, which was downloaded by over 18,000 customers, including approximately 421 Fortune 500 companies–and large swaths…

Become a member to access this content.

Does Your Organization Need a Chief Privacy Officer?

December 10, 2020
Tim Crino
Breach prevention, C-Suite, CISO, Compliance, Cybersecurity, Data Privacy, Data Protection

As the presence of global data privacy legislation continues to rise, so does the importance of privacy-related positions. The EU’s General Data Protection Regulation (GDPR) mandates that companies hire a Data Protection Officer, and related roles like Chief Information Security Officer (CISO) have also become more valued. One of the most concrete action items a…

Become a member to access this content.

New Zealand’s Data Privacy Law Now Effective

December 2, 2020
Amy Willcox
Breach prevention, Breach response, Compliance, Consumer Privacy, Cybersecurity, Data Privacy, Data Protection, Data Rights Management (DRM)

On December 1, New Zealand’s new data privacy law took effect. The Privacy Act 2020 impacts every organization with a physical or virtual presence in New Zealand. Any offshore organization that collects data from New Zealanders must comply. This marks the suspension of 1993’s Privacy Act and puts the pressure on organizations to handle data…

Become a member to access this content.

The Beginner’s Guide to Stopping Data Breaches

While the terms “data security” and “data breach” have been around for a long time, they've acquired a lot of traction in the last few years with the rise of data privacy regulations like the General Data Privacy Regulation (GDPR),…