#DtSR Podcast: Latest Issues in Law and Cybersecurity

I was a guest recently on the Down the Security Rabbithole Podcast to talk about cybersecurity law with hosts Rafal Los (@Wh1t3Rabbit) and Michael Santarcangelo (@Catalyst). As always, it was a blast! Listen to the Podcast   Join the #DtSR Discussion on Twitter For more great #DtSR content, check out the full Down the Security Rabbithole Podcast homepage and also check [...]

5 Key Takeaways from Verizon’s GC on Lessons Learned from Yahoo Deal

A good friend recently shared with me the article Verizon GC on the Lessons Learned from Deal with Yahoo (use Linkedin for paywall access) because he thought it would be valuable information to add to my own cybersecurity knowledge toolbox. Given the experience Verizon’s GC has gained through this process, when he talks about lessons [...]

Are Smaller Healthcare Practices Required to Report a Ransomware or Potential Data Breach?

Does the HIPAA Breach Notification Rule apply to all Covered Entities and Business Associates, Even Smaller Ones? To many of you reading this post this question seems ridiculous. You know the answer. However, I get asked this question so frequently that I decided to answer it with a blog post to save time next time [...]

Critical Steps Companies Must Take to Comply with New York’s Cybersecurity Rules – Ethical Boardroom

New York's Cybersecurity Regulations went into effect on March 1, 2017 and their impact could reach farther than you think -- including to small and mid-sized companies that do not do business in New York and are not in the financial services industries. And, they require direct involvement by the Board of Directors. Is your [...]