President Obama's Cybersecurity National Action Plan (CNAP), a comprehensive plan to address the nation's cybersecurity challenges through increased funding, a more robust cybersecurity workforce, and education initiatives,...more
The Department of Homeland Security (DHS) and the Department of Justice (DOJ) have released Interim Guidance Documents (Guidance Documents) to implement the Cybersecurity Information Sharing Act of 2015 (CISA). The Act...more
The Court of Justice of the European Union (CJEU) has held that the EU Commission's decision establishing the Safe Harbor data transfer framework is invalid because the Commission failed to determine that the protection...more
10/8/2015
/ Binding Corporate Rules ,
Cybersecurity ,
Data Protection Authority ,
Edward Snowden ,
EU Data Protection Laws ,
European Commission ,
European Court of Justice (ECJ) ,
Facebook ,
Federal Trade Commission (FTC) ,
International Data Transfers ,
Ireland ,
National Security ,
National Security Agency (NSA) ,
Personal Data ,
Privacy Laws ,
Right to Privacy ,
Safe Harbors ,
Schrems I & Schrems II ,
US-EU Safe Harbor Framework
In a landmark decision that threatens to undo the process by which American companies handle personal data flowing from the European Union, the Advocate General (AG) of the European Court of Justice (ECJ) issued an advisory...more
10/1/2015
/ Advocate General ,
Better Business Bureau ,
Cybersecurity ,
Data Protection ,
Data Security ,
Data Transfers ,
Edward Snowden ,
EU Data Protection Laws ,
European Court of Justice (ECJ) ,
Facebook ,
Federal Trade Commission (FTC) ,
National Security Agency (NSA) ,
Personal Data ,
PRISM Program ,
Safe Harbors ,
U.S. Commerce Department ,
US-EU Safe Harbor Framework
The Federal Trade Commission (FTC) can regulate cybersecurity policies and procedures as “unfair” acts or practices under Section 5 of the FTC Act, the U.S. Court of Appeals for the Third Circuit has ruled in a very important...more
9/1/2015
/ Appeals ,
Banking Sector ,
Banks ,
Best Practices ,
COPPA ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Cybersecurity Framework ,
Data Protection ,
Data Security ,
Dodd-Frank ,
Fair Credit Reporting Act (FCRA) ,
Federal Trade Commission (FTC) ,
Financial Institutions ,
Fraudulent Charges ,
FTC Act ,
FTC v Wyndham ,
Gramm-Leach-Blilely Act ,
Hackers ,
Jurisdiction ,
Motion to Dismiss ,
NIST ,
Section 5 ,
Unfair or Deceptive Trade Practices ,
Wyndham
The Department of Justice (DOJ) recently announced the largest coordinated international law enforcement effort ever directed at an online cyber-criminal forum. Financial institutions and other companies should consider...more
7/24/2015
/ Best Practices ,
Criminal Prosecution ,
Cyber Crimes ,
Cybersecurity ,
Department of Justice (DOJ) ,
Enforcement Actions ,
FBI ,
Financial Institutions ,
Hackers ,
Malware ,
New Guidance ,
NIST
The Federal Financial Institutions Examination Council (FFIEC) has released its long-awaited Cybersecurity Assessment Tool (Assessment) to help financial institutions identify the inherent risks faced by a company and...more
The New York State Department of Financial Services (NYDFS) recently issued a report identifying common cybersecurity issues and concerns caused by the failure of some banks to sufficiently manage vulnerabilities posed by...more
In its recent press release, the Federal Financial Institutions Examination Council (FFIEC) issued two statements reiterating financial institutions' obligations to have measures in place to prevent and mitigate cybersecurity...more
The recently released Federal Trade Commission staff report, Internet of Things: Privacy & Security in a Connected World, provides companies with insight into the FTC's consumer privacy and data security expectations for the...more
New York Attorney General Eric Schneiderman is proposing an "overhaul [of] New York's data security law [that would] require new and unprecedented safeguards for the personal data of consumers." The proposal would create new...more
During his recent State of the Union address, President Obama called on Congress “to finally pass the legislation we need to better meet the evolving threat of cyber attacks, combat identity theft, and protect our children’s...more
In a recent advisory, the Research and Education Networking Information Sharing and Analysis Center (REN-ISAC) warned higher education institutions about sophisticated phishing attacks that target faculty and staff...more
A small private cybersecurity firm recently revealed that a Russian computer hacking organization amassed more than 1.2 billion username and password combinations. The data was collected across a wide swath of websites, from...more