Utah Creates Safe Harbor for Companies Facing Data-Breach Litigation
Utah’s data breach notification law was recently amended to creating several defenses to claims arising from a security system breach.
Virginia Governor Signs Consumer Privacy Law
Gov. Ralph Northam recently signed the Virginia Consumer Data Protection Act, which will give consumers certain rights to control how their personal data are used beginning Jan. 1, 2023. The legislation has a carve out, however, for information collected in the employment context.
Pension Breach Blamed on Third-Party Service Provider
A major breach of pension plan participants’ data in the U.K. is a reminder for plan sponsors and administrators to assess the data privacy and security capabilities of potential service providers.
Ransomware: To Pay or Not to Pay
There’s nothing worse than paying criminals. And paying a ransom for data is just that—paying criminals for a criminal act. All you get out of the payment is access to your data. It doesn’t fix the vulnerability or the root problem. Let the record reflect that the FBI does not recommend paying ransoms to cyber criminals.
Cyber Exposures Soar During Pandemic
Although it is logical that cyberattacks have risen during the pandemic—and there is anecdotal evidence that it is occurring, including our own experience—an interesting new report on the number and effect of the cyberattacks was recently released by Allianz, which provides cyber liability insurance products.
6th Circuit Dismisses CFAA Claim Against Competing Employees
The 6th U.S. Circuit Court of Appeals dismissed Computer Fraud and Abuse Act (CFAA) claims against former employees of a truck and trailer company who allegedly took and misused electronic computer data from their employer.