Data Privacy Monitor

Data Privacy Monitor

Commentary on Data Privacy & Information Security Subjects

Category Archives: Cybersecurity

Subscribe to Cybersecurity RSS Feed

How to Respond to SEC Inquiries Concerning Data Breach and Data Security Policies

Posted in Cybersecurity, Data Breaches
Every company, whether public or private, has exposure to potential data breach or theft of confidential information. When this occurs, various state and federal regulatory organizations have jurisdiction over ensuring that there is prompt, corrective, and remedial action taken by the company whose systems have been compromised. Much of the focus of articles and commentary … Continue Reading

California Continues to Regulate Privacy and Advertising to Minors in New Law Regulating School-related Online Services

Posted in Cybersecurity, Education, Enforcement
On September 29, 2014, California Governor Jerry Brown signed SB 1177 into law, effective Jan 1, 2015.  See Governor Brown Issues Legislative Update.  The new privacy and advertising regulation goes beyond FERPA, the federal student privacy law, and existing state student privacy laws that govern schools and requires them to obtain privacy protections for student … Continue Reading

New Guidance for Merchants on Ensuring that Service Providers Share Security Responsibility

Posted in Credit Card, Cybersecurity, Information Security
For merchants, long gone are the days of using a card reader with a dial-up connection to their payment processor. Today’s omni-channel retailers rely on multiple third party service providers to complete payment card transactions. These third parties—call center operators, payment gateways, loyalty solution providers, managed security services, data-center hosts, mobile app developers, and fraud … Continue Reading

Major Transformation in Cyber-Liability Insurance is Underway

Posted in Cybersecurity, Hacking, Insurance
Editor’s Note: the following blog post was authored by Ben Beeson from Lockton Companies LLC In the beginning The emergence of the Internet as a business platform at the end of the nineties also announced the arrival of new risks to organizations. In those early days, there was a widely held belief that the primary concern was operational, … Continue Reading

Broker-Dealers and Investment Advisers Now Targeted by Both Cyber Intruders and SEC Cybersecurity Examiners

Posted in Cybersecurity, Data Brokers
The following BakerHostetler Executive Alert was authored by: Andrew W. Reich and Jonathan A. Forman Cybersecurity has increasingly become a critical issue for all types of businesses, few more so than broker-dealers, investment advisers and others in the financial sector. The cyber threat is much broader than customer data privacy as addressed by the Securities … Continue Reading

Privacy Law in a Nutshell

Posted in Cybersecurity, Federal Legislation, Information Security, International Privacy Law, Marketing, Privacy
BakerHostetler Privacy and Data Protection Partner Erica Gann Kitaev is a co-author of the recently published Privacy Law in a Nutshell, Second Edition, through West Academic Publishing. Legal issues related to privacy are exploding in the U.S., and virtually all businesses face privacy considerations, particularly as technology and the law evolves.  The Privacy Nutshell is … Continue Reading

Governing Big Data

Posted in Cybersecurity, HIPAA/HITECH, Information Governance, Information Security, Privacy, Uncategorized
Sources and volumes of data are growing exponentially.  Website clicks, social media, sensors, and card swipers are generating massive amounts of data every second.  More and more enterprises are beginning to collect and utilize this Big Data for all kinds of purposes, including improved business intelligence, targeted marketing and fraud detection.  With so much attention … Continue Reading

Webinar Recording – Implementation of the Cybersecurity Executive Order

Posted in Cybersecurity
In issuing the Cybersecurity Executive Order last February, President Obama declared that the “cyber threat is one of the most serious economic and national security challenges we face as a nation” and that “America’s economic prosperity in the 21st century will depend on cybersecurity.” Now, important benchmarks in implementing this Executive Order have been reached. … Continue Reading

New DoD Rule Promotes Voluntary Sharing of Cyber-Security Threat Information Between DoD and Defense Contractors

Posted in Cybersecurity
Co-authored by: Alan Pate On October 22, 2013, the Department of Defense (DoD) published its Final Rule establishing a program for promoting voluntary sharing of cyber threat information between the DoD and government contractors. The DoD intends this information sharing program to “enhance and supplement” participating defense contractors’ capabilities to safeguard DoD information.  Unlike failed … Continue Reading

SEC To Issue Stronger Cybersecurity Guidance?

Posted in Cybersecurity, Data Breach Notification Laws
In February we wrote about whether Facebook’s IPO would set the tone under the SEC’s then-relatively new cybersecurity disclosure guidance. In subsequent months, it has become apparent that this guidance is still not yielding the level of disclosure on cybersecurity matters that regulators want. This is especially true with respect to the disclosure of past … Continue Reading

LXBN TV Interview: What Companies Should Do to Prepare for Implementation of Cybersecurity Executive Order

Posted in Cybersecurity
Following up on a recent post discussing this very subject, Jerry Ferguson, blog contributor and Co-Leader of BakerHostetler’s Privacy and Data Protection Team had the opportunity to speak with Colin O’Keefe of LXBN regarding the cybersecurity executive order. In the brief interview, Ferguson explains why companies shouldn’t simply ignore the order and what they should do now to prepare for … Continue Reading

FTC Databook Highlights Consumer Fraud

Posted in Cybersecurity, Identity Theft, Information Security, Online Privacy
The FTC last week announced the release of the Consumer Sentinel Network Databook for January – December 2012.  The “Consumer Sentinel Network” is the FTC’s platform for law enforcement collaboration on issues affecting consumers. The program collects data from a wide range of sources, providing a comprehensive, nationwide picture of consumer complaints. Given the possible existence … Continue Reading

What You Should Be Doing Now to Prepare for Implementation of the Cybersecurity Executive Order

Posted in Cybersecurity
Co-Authored by: Theodore J. Kobus III A tempting response to the Cybersecurity Executive Order (the “Order”), announced by President Obama at his State of the Union address, is to ignore it.  It is vague in key particulars, such as which companies are part of the “critical infrastructure” and therefore subject to the Order.  The only … Continue Reading

APT Threat Report Shows Cybersecurity Risks Not Limited to Identity Theft

Posted in Cybersecurity
We often talk to companies who believe they are an unlikely target for hackers because they do not have financial account information, Social Security numbers, or medical information.  However, personal information is not the only item hackers are after.  Indeed, the chief of the United States Cyber Command and director of the National Security Agency … Continue Reading

Recorded Webinar: New Cybersecurity Executive Order

Posted in Cybersecurity
     Recorded Webinar:New Cybersecurity Executive Order President Obama has declared that the “cyber threat is one of the most serious economic and national security challenges we face as a nation” and that “America’s economic prosperity in the 21st century will depend on cybersecurity.” In an increasingly interconnected and interdependent world, the threats posed by … Continue Reading

Rockefeller Releases Results of Fortune 500 Survey on Cybersecurity

Posted in Cybersecurity, Online Privacy
Back in September, I posted here about Senate Commerce Committee Chairman John D. Rockefeller’s (D-WV) letters to all FORTUNE 500 companies inquiring about business opposition to cybersecurity legislation.  This morning, Rockefeller released a report by his staff summarizing the gist of the roughly 300 responses he’s received to date.  The report does not mention any … Continue Reading

Cybersecurity Bill Fails Again In Senate

Posted in Cybersecurity, Federal Legislation
Yesterday evening, the Senate again failed to move forward on the Cybersecurity Act of 2012, voting 51-47 not to end debate on the measure (60 votes required). Opponents picked up one additional ‘no’ vote by Sen. Rubio (R-FL), who did not vote on it in August.  Majority Leader Reid faulted the minority and the Chamber … Continue Reading

Rockefeller Questions Fortune 500 on Cybersecurity Act / Data Security Practices

Posted in Cybersecurity, Federal Legislation
Senate Commerce Committee Chairman John D. Rockefeller (D-WV) yesterday blanketed the entire FORTUNE 500 list of companies with a pointed letter inquiring about business opposition to cybersecurity issues and seeking a response by October 19. (Press release here) The letter asks for information on companies’ cybersecurity practices and companies’ concerns about the federal government’s role … Continue Reading

Senate Takes Up Cybersecurity Bill: Can National Security Trump Politics This Close to the Election? Part 3 – The End?

Posted in Cybersecurity, Federal Legislation
This morning, the Senate failed to conclude debate on the cybersecurity bill by a vote of 52 to 46 (60 votes required), likely sounding the death knell for the legislation this year. Five Republicans voted in favor of moving ahead, while five Democrats voted against, but the vote otherwise followed party lines. In other words, … Continue Reading

Senate Takes Up Cybersecurity Bill: Can National Security Trump Politics This Close to the Election? Part 2

Posted in Cybersecurity, Federal Legislation
Yesterday we asked: Can National Security Trump Politics This Close to the Election? The answer is looking more and more like “no”. Having failed to reach agreement with his Republican counterpart on limiting debate and consideration of amendments (of which there are now 167) to the bill, last night Majority Leader Harry Reid (D-NV) filed … Continue Reading