Internet of Medical Things Resilience Partnership Act of 2017

A new bill called the “Internet of Medical Things Resilience Partnership Act of 2017,” H.R. 3985, was recently introduced in the House of Representatives. If passed as drafted, the bill will establish a working group of public and private entities led by the Food and Drug Administration (FDA) and National Institute of Standards and Technology […]

Read More

Two Significant Data Breach Cases Moving to Higher Courts

Two significant data breach cases have been appealed, and this past week, it was announced that one will be heard by the Supreme Court of Pennsylvania. The other has been stayed while plaintiffs move for certiorari before the United States Supreme Court. In Dittman v. UPMC d/b/a The University of Pittsburgh Medical Center, 2017 PA Super.  […]

Read More

Comment Deadline Approaching for NIST Information Security Framework

The public comment period, which began on August 15th, for The National Institute of Standards and Technology’s (NIST) draft, Revision 5, of Special Publication 800-53 “Security and Privacy Controls for Information Systems,” ends on Tuesday, September 12. The newest draft of SP 800-53 is part of a continuing drive to create a “unified information security framework […]

Read More

Delaware Amends Data Breach Notification Law

Delaware has joined the list of states amending their data breach notification laws, expanding the definition of Personal Information (PI) and adding requirements for credit monitoring, among other items. The changes will be effective on April 14, 2018. The Delaware amendments contain a hard deadline for providing notice, required notice to the state AG’s office, […]

Read More

Are Smart Contracts the Next Target for Hackers?

Smart contracts are poised to revolutionize the way transactions are handled in industries ranging from insurance and healthcare to financial services and even gambling.  However, smart contracts can be vulnerable to hacking. On July 19, Parity Technologies, a start-up that specializes in blockchain technology, released a security alert advising that hackers took advantage of a […]

Read More

NotPetya – What Should You Do?

It’s been three days since the outbreak of NotPetya, and we are beginning to learn more about it. Here are some quick things to know and some steps each company should take to help protect itself.

Read More

Anthem Settles Data Breach Class Action

Anthem, Inc., the nation’s largest health insurance company, has agreed to settle the class action litigation arising from its 2015 data breach for $115 million, eclipsing the amount of any previous data breach settlement. The lawsuit, filed in federal court in California, had survived two motions to dismiss. After extensive discovery, plaintiffs moved for class […]

Read More

Tech Study Reveals Media Players Susceptible To Hacking

A team of researchers at Check Point Software Technologies recently announced the disturbing results of a new study that identified media player subtitles as a new avenue of attack for hackers. Cyber hacks typically fall into two broad categories, either: (a) enticing the user to visit a malicious website; or (b) masking a malicious file […]

Read More