Bring your own device (BYOD) refers to a policy of permitting employees to use personally-owned devices (laptops, tablets, and smartphones) to access company information and applications. BYOD continues to grow in popularity among businesses as a means to increase mobile and work from anywhere productivity choices for employees or reduce hardware expenditures. However, security can…
So far data from half a billion LinkedIn users has been scraped and put for sale online. Linkedin accounts leaked Data from over 500 million LinkedIn users is being sold online to hackers, according to its website LinkedIn has over 740 million users, so that means that over two-third user base is reportedly compromised. This…
Utah Becomes the Second U.S. State to Establish Affirmative Defenses for Data Breach. This new law creates incentive for businesses to develop and implement a written cybersecurity program to protect themselves against data breach lawsuits. On March 11, Utah governor Spencer Cox signed the Cybersecurity Affirmative Defense Act, which creates affirmative defenses to different causes…
Shares of Ubiquiti traded down more than 10% on Wednesday following a report claiming the maker of cloud-enabled Internet of Things devices downplayed a recent security breach. Block & Leviton LLP, a national securities litigation firm, announces that it is investigating Ubiquiti, Inc. for potential violations of the federal securities laws. Ubiquity security breach Originally,…
CNA Financial, a Chicago-based provider of cyber insurance, confirmed a cyberattack against its systems, which has some concerned that cybercriminals may target policyholders. If the investigation of the attack proves to include policyholder data, a cyber insurance industry expert warned, it could enable devastating further incidents that hackers could use as leverage in extortion attempts.…
Personal information in the United States is currently protected by a patchwork of industry-specific federal laws and state legislation whose scope and jurisdiction vary. The challenge of compliance for organizations that conduct business across all 50 states is therefore considerable. Even though many countries have laws that mandate data breach notification, data breach notifications are…
The New York State Department of Financial Services has released new guidance presenting some key practices for New York-regulated insurers that write cyber insurance. Background The 2020 Internet Crime Report issued by the FBI’s Internet Crime Complaint Center includes information from 791,790 complaints of suspected internet crime—an increase of a whopping 69.4% from 2019—and reported…
Hackers are exploiting vulnerabilities in Exchange email servers to drop ransomware, Microsoft has warned, a move that puts tens of thousands of email servers at risk of destructive attacks. NYDFS Letter To Regulated Entities On March 9th The NYDFS released an industry letter to all regulated entities regarding the Microsoft Reports Exploitation of Four Vulnerabilities…
A “hacktivist” breached a massive trove of security-camera data collected by Silicon Valley startup Verkada, gaining access to live feeds of 150,000 surveillance cameras inside hospitals, companies, police departments, prisons and schools. Bloomberg reports the breach was carried out by a hacker with the goal of demonstrating the “pervasiveness of video surveillance and the ease…
All it takes is one infection, on one device to impact personal and corporate networks. It doesn’t matter if you have the most secure security system in the world. It takes only one untrained employee to be fooled by a phishing email and give away the data you’ve worked so hard to protect. Make sure…