Category Archives: Digital Information Law

Trying to DDoS the White House Website to Protest Trump’s Inauguration Violates CFAA

There has been a lot of buzz this past week about protesters indicating they plan to protest President-Elect Trump’s inauguration by launching a DDoS attack on the White House website. This plan has received some high-profile publicity by articles in magazines such as Forbes and PC World. I initially learned of this discussion when I …

Continue reading “Trying to DDoS the White House Website to Protest Trump’s Inauguration Violates CFAA”

Feds: Chinese Traders Busted, Trading on Info “Hacked” from Law Firms via Email Compromise

A warning for law firms: Preet Bharara, the U.S. Attorney for the Southern District of New York, said the case should serve as a “wake-up call for law firms around the world.” “You are and will be targets of cyber hacking, because you have information valuable to would-be criminals,” Bharara said in a statement. But …

Continue reading “Feds: Chinese Traders Busted, Trading on Info “Hacked” from Law Firms via Email Compromise”

Kim Kardashian’s Lesson on the Relationship Between Physical and Cybersecurity

While the story of Kim Kardashian being robbed at gun-point while in Paris, France has created quite a stir in pop culture, it has lessons to learn about cybersecurity as well. First and foremost, it demonstrates the integral interplay between cybersecurity and physical security and how people need to always maintain situational awareness of how their …

Continue reading “Kim Kardashian’s Lesson on the Relationship Between Physical and Cybersecurity”

Cybersecurity Incident Response Checklist

Business leaders, when people like me tell you that having a cybersecurity incident in your company is like being in a building on fire, we are not exaggerating. Take a look at the following checklist (note, this is not an incident response plan!) while keeping in mind that over half of the items on that checklist …

Continue reading “Cybersecurity Incident Response Checklist”

Brazzers porn hack: more than just account holders exposed–what does this mean for your company?

We have been observing an evolution in hackers’ tactics from going after data that could be directly monetized, such as payment card data, to going after data that can be monetized indirectly through extortion, such as the Ashley Madison data. The hack of Brazzers porn site is similar to the Ashley Madison hack in that the …

Continue reading “Brazzers porn hack: more than just account holders exposed–what does this mean for your company?”

Shawn Tuma discusses how elections could be hacked on WOWO 1190 AM | 107.5 FM

From Fort Wayne’s Morning News on 08/09/16, WOWO 1190 AM | 107.5 FM Source: Cyber security expert Sha wn Tuma tells us how our elections could be hacked – WOWO 1190 AM | 107.5 FM

Cybersecurity: How Long Should An Incident Response Plan Be?

Last evening I had the pleasure of talking cybersecurity law with a group of CIOs from some pretty sophisticated companies. It was a great discussion and I learned as much as I shared — just the way I like it. During our discussion, the subject of Incident Response Plans came up and I explained why …

Continue reading “Cybersecurity: How Long Should An Incident Response Plan Be?”

D CEO Magazine: Why Cybercriminals Are Targeting Law Firms

Many thanks to attorney and legal scholar extraordinaire John G. Browning (@therealjohnbrow) for quoting Shawn Tuma in his article in this month’s D CEO magazine: Why Cybercriminals Are Targeting Law Firms. Please read the full article to hear Tuma’s advice to John’s questions of why law firms often have poor(er) cybersecurity and what law firms can …

Continue reading “D CEO Magazine: Why Cybercriminals Are Targeting Law Firms”

Computer Use Policies – Are Your Company’s Illegal According to the NLRB?

The National Labor Relations Board (NLRB) has continued its assault on businesses and their ability to legitimately protect their computer systems and information against unauthorized non-business use by employees. A few weeks ago, I wrote 3 Important Points on Computer Policies in which I stressed (1) why your company must have them but (2) that …

Continue reading “Computer Use Policies – Are Your Company’s Illegal According to the NLRB?”

Cyber Law Update on #DtSR Podcast with Los, Santarcangelo and Tuma

Listen to the Podcast   /   Join the #DtSR Discussion on Twitter Shawn Tuma was a guest the Down the Security Rabbithole podcast where he and hosts Rafal Los (@Wh1t3Rabbit) and Michael Santarcangelo (@Catalyst) discussed recent events in the world of cyber law. For more great #DtSR content, check out the full Down the Security Rabbithole podcast …

Continue reading “Cyber Law Update on #DtSR Podcast with Los, Santarcangelo and Tuma”