Will Officers and Directors be held legally responsible for their companies’ data breaches and cybersecurity incidents? That is the question I addressed in Cybersecurity Risk: Law and Trends – A Director’s Duties Must Evolve With The Company’s, which was recently published in the Spring 2015 issue of Ethical Boardroom (see article below). The article is short…
Tag: Digital Information Law
A Few Thoughts on the Consumer Litigation Settlement in the Target Data Breach Case
Many thanks to CSO Online and Michael Santarcangelo (@catalyst) for his excellent synopsis of our conversation regarding the recent settlement of the Consumer Litigation in the Target data breach lawsuit (note, the more substantive Financial Institutions Litigation has not settled). Please give the full article a read and also give a shout-out to Michael on his Twitter…
Please share this!
New Podcast: #DtSR Episode 130 – Where Law and Cyber Collide
I really appreciate the #DtSR Gang [Rafal Los (@Wh1t3Rabbit), James Jardine (@JardineSoftware), and Michael Santarcangelo (@Catalyst)] inviting me to tag along for another episode of the Down the Security Rabbit Hole podcast. In this episode we discuss the following: Traveler’s Insurance files suit against a web development company for failing to provide adequate security, resulting…
Please share this!
Will Changes to the CFAA Deter Hackers? | Norse DarkMatters
Read my latest post on Norse’s DarkMatters: Will Changes to the CFAA Deter Hackers?
Please share this!
#SonyHack: Will Executives’ Embarrassing Emails Better Motivate Cybersecurity Change?
Sitting in the Miami airport at 5:00 am I am reading news updates on the #SonyHack and a thought just occurred to me: Previously, many of us preaching the “you better take your company’s security seriously” message to the C-Suites have been wondering if it would take a court decision finding C-Levels or Board members…
Please share this!
The Best Evidence Why Your Company Needs a CISO Before a Data Breach
“The proof is in the pudding,” goes the old saying. When it comes to organizational changes companies make following a data breach, If the proof is in the pudding, then the verdict is clear: companies should hire a Chief Information Security Officer (CISO) before they have a data breach. Why? According to this article in…
Please share this!
The Art of Cybersecurity: How Sun Tzu Masterminded the Home Depot Data Breach
Sun Tzu taught that, when it comes to the art of cybersecurity, you must be wary of your business associates and other third parties. Why? Have you heard that Home Depot had a data breach? That hackers were able to exfiltrate 56 million payment cards and 53 million customer email addresses from its systems? Did…
Please share this!
Yes, I will mention this post in tomorrow’s seminar on data breach! “Who’s Gonna Get It?”
This is one of my favorite and my most popular posts ever — and you better believe I will find a way to mention it to this group of CEOs to help them understand why it is important to take seriously the data security threat! Data Breach – Who’s Gonna Get It? | business cyber…
Please share this!
“Defense wins championships” when preparing for the inevitable data breach
“The best strategy to manage the inevitable data breach of your enterprise is to be prepared.” -Adam Greenberg, SC Magazine Exactly–you must prepare on 2 fronts: Defense & Response In a recent article in SC Magazine, Adam Greenberg marches along faithfully with many of us in trying to get you, the business leader, to appreciate the…
Please share this!
Uncle Sam doesn’t have a clue on data privacy, cyber crime laws, and neither do we!
The point of the article that is the source of the quote below is exactly right: there is no consistency, cohesiveness, or harmony with the cyber crime and data privacy laws. I believe there are several reasons but these are the two that are most prominent: The cyber crime and data privacy laws are a patchwork collection…
