12/31/19 Two decades ago to the day, I sat right here in my home study and thought about how my career as a cyber incident responder was surely about to blast off. Though I had only been licensed to practice law for under two months, I just knew this subject matter was it -- my … Continue reading 2 Decades Later: Cyber Risk Isn’t Y2K–It Is An Unsolved Risk That You Must Take Seriously
Business Security Weekly, Episode 81, featured Michael Santarcangelo (@catalyst) inviting Shawn Tuma to join as co-host and guest to discuss two topics that should be near and dear to everyone's hearts: The legal case for why companies need cyber risk management programs and what experienced cybersecurity attorneys' roles are in such programs; and The frequently … Continue reading Cyber Risk Management and Attorney-Client Privilege in Cybersecurity Discussed on Business Security Weekly
In the world of cybersecurity and data protection, we tend to think about most cyber incidents as being "data breaches" because that's the term de jour that occupies news headlines. Because of this, far too many companies think that if they do not have valuable data that hackers would want to "breach," so to speak, … Continue reading Can your company do business without its computer system? Let’s ask Atlanta!
There has been a data breach emanating from the U.S. Marine Corps Forces Reserve that impacted 21,426 individuals. The breach exposed their sensitive personal information such as truncated social security numbers, bank electronic funds transfer and bank routing numbers, truncated credit card information, mailing address, residential address and emergency contact information. Calm down and press the … Continue reading Marine corp data breach lesson: human error is often the cause and is preventable
Fresenius Medical Care North America (FMCNA) has agreed to pay $3.5 million to the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR), and to adopt a comprehensive corrective action plan, in order to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules. FMCNA … Continue reading FMCNA to Pay $3.5 Million for Non-Compliance with HIPAA’s Risk Analysis and Risk Management Rules