National data breach notification law proposed by Senate Commerce Committee members (includes jail?)

Three Democratic senators introduced legislation Thursday requiring companies to notify customers of data breaches within 30 days of their discovery and imposing a five year prison sentence on organizations caught concealing data breaches.https://www.cyberscoop.com/national-data-breach-notification-law-bill-nelson-uber-equifax-hack/

Cybersecurity Legal Issues: What you really need to know (slides)

Shawn Tuma delivered the presentation Cybersecurity Legal Issues: What you really need to know at a Cybersecurity Summit sponsored by the Tarleton State University School of Criminology, Criminal Justice, and Strategic Studies' Institute for Homeland Security, Cybercrime and International Criminal Justice. The presentation was on September 13, 2016 at the George Bush Institue. The following are the slides … Continue reading Cybersecurity Legal Issues: What you really need to know (slides)

Brazzers porn hack: more than just account holders exposed–what does this mean for your company?

We have been observing an evolution in hackers' tactics from going after data that could be directly monetized, such as payment card data, to going after data that can be monetized indirectly through extortion, such as the Ashley Madison data. The hack of Brazzers porn site is similar to the Ashley Madison hack in that the … Continue reading Brazzers porn hack: more than just account holders exposed–what does this mean for your company?

D CEO Magazine: Why Cybercriminals Are Targeting Law Firms

Many thanks to attorney and legal scholar extraordinaire John G. Browning (@therealjohnbrow) for quoting Shawn Tuma in his article in this month's D CEO magazine: Why Cybercriminals Are Targeting Law Firms. Please read the full article to hear Tuma's advice to John's questions of why law firms often have poor(er) cybersecurity and what law firms can … Continue reading D CEO Magazine: Why Cybercriminals Are Targeting Law Firms

Computer Use Policies – Are Your Company’s Illegal According to the NLRB?

The National Labor Relations Board (NLRB) has continued its assault on businesses and their ability to legitimately protect their computer systems and information against unauthorized non-business use by employees. A few weeks ago, I wrote 3 Important Points on Computer Policies in which I stressed (1) why your company must have them but (2) that … Continue reading Computer Use Policies – Are Your Company’s Illegal According to the NLRB?