The NY Times reported that the Supreme Court ruled in a “5-to-4 decision has implications for all kinds of personal information held by third parties, including email and text messages, internet searches, and bank and credit card records.”  The June 22, 2018 ruling in the case of  Carpenter v. View Full Post
The Washington Post reported a 7 year old case will be considered by the US Supreme Court as to whether “Apple has “monopolized” the market for iPhone apps because it has total control over the games, utilities and other offerings that appear in its App Store.”  The June 18, 2018 article entitled “The Supreme Court will wade into a fight over Apple’s tightly controlled App Store” included these comments: The lawsuit could force Apple to rethink the way it manages its App Store, long considered one of the most highly curated platforms in the business. View Full Post
Bankinfosecurity.com reported that to “steal cryptocurrency, attackers continue to leverage malware, phishing attacks and fake advertising campaigns.”  The June 12, 2018 article entitled “Cryptocurrency Theft: $1.1 Billion Stolen in Last 6 Months” included the comments from endpoint security firm Carbon Black “which analyzes cryptocurrency attacks that have been seen over the past six months”:   There are currently an estimated 12,000 dark web marketplaces selling approximately 34,000 offerings related to crypto theft,…which says the tools cost anywhere from $1 to $1,000, with an average cost of $224. View Full Post
The US Department of Justice announced the arrest of 74 criminals, including 42 in the US, who made millions “targeting employees with access to company finances and businesses working with foreign suppliers and/or businesses that regularly perform wire transfer payments.” The June 11, 2018 Press Release entitled “74 Arrested in Coordinated International Enforcement Operation Targeting Hundreds of Individuals in Business Email Compromise Schemes” included a description of these most popular Spearphishing schemes: View Full Post
Darkreading.com reported “Under the new law, if an individual’s personal information is part of a breach, he must be notified within 30 days after discovery — no exceptions.” The June 7, 2018 article entitled “New Colorado Breach Notification Rules Signed Into Law” included these comments about the new law signed by Gov. View Full Post
HealthITSecurity.com reported that more “…than one-quarter of cyber insurance claims received by AIG last year were the result of ransomware attacks, the largest percentage of any cyberattack type, according to the insurance giant’s 2017 cyber insurance claim statistics.”  The June 4, 2018 report entitled “Ransomware Attacks Topped List of Cyber Insurance Claims” included these concerns: …a ransomware attack is the type of cyberattack that most worries healthcare IT professionals, according to a survey of HIMSS18 attendees by security firm Imperva. View Full Post
Darkreading.com reported “cybercriminals rake in at least $1.5 trillion every year — an amount equal to Russia’s gross domestic product [GDP].” The June 1, 2018 report entitled “Cybercrime Is Skyrocketing as the World Goes Digital” relied on the “research by Dr. View Full Post
The Washington Post article highlighted the importance of GDPR in that it “underscored the extent to which the European Union has emerged as the most powerful regulator of Silicon Valley, stepping in where Washington has failed — or simply been unwilling — to limit some of the United States’ most lucrative and politically influential companies.”  The May 29, 2018 article entitled “Europe, not the U.S., is now the most powerful regulator of Silicon Valley” included these comments about GDPR which: …gives users the right to demand the deletion of data and object to new forms of data collection while requiring that companies get explicit consent for how they collect, process and use data — practices that had been all but unfettered in the United States. View Full Post
My friend Judy Greenwald reported at BusinessInsurance.com that AIG expects now that GDPR is in place that more “Companies will be more inclined to report breaches, with the impact on cyber claims similar to that witnessed in the U.S. after state breach notification laws come into effect.”  Judy’s May 24, 2018 report entitled “Security claims expected to surge with GDPR: AIG report” included quotes from Mark Camillo (London-based head of cyber for Europe Middle East Asia at AIG) in the AIG Europe report titled Cyber Insurance Claims: Ransomware Disrupts Business about serious cyber intrusions: The combination of leaked National Security Agency tools plus state-sponsored capabilities triggered a systemic event. View Full Post
The Washington Post reported that “Securities regulators across the United States and Canada announced dozens of investigations Monday into potentially deceitful cryptocurrency investment products, the largest coordinated crackdown to date by state and provincial officials on bitcoin scams.”  The May 21, 2018 article entitled “State regulators unveil nationwide crackdown on suspicious cryptocurrency investment schemes” included these observations from the North American Securities Administrators Association: As many as 35 cases are pending or already completed, with some resulting in cease-and-desist letters warning the alleged schemes that their unregistered activity violates state securities law. View Full Post