Monthly Archives: February 2018

3 Points. U S Supreme Court. Health Care. Data Breach. What you Need to Know to be Informed.

The U.S. Supreme Court refused to grant review of CAREFIRST, INC., ET AL. V. ATTIAS, CHANTAL, ET AL which concerns:

  • whether to bring a data security lawsuit, is actual harm or the possibility of harm required?
  • the U.S. Supreme Court refusal left in place a standard  set by the U.S. Court of Appeals in the District of Columbiath that the possibility of harm is enough
  • the burning question- is it up to the courts to hold entities responsible for safe keeping data?

Fierce Healthcare | Supreme…

Regulatory TREND. New Enforcement Agency for CyberSecurity. Copy it in your state elections & electricity.

The new cybersecurity office:  Justice Department’s Cyber-Digital Task Force

Cyber Digital Task Force Goals:

  • canvass the many ways that the Department is combatting the global cyber threat
  • identify how federal law enforcement can more effectively accomplish its mission

Task Force members:

  • CHAIR: senior Department official appointed by the Deputy Attorney General
  • Department’s Criminal Division
  • National Security Division
  • United States Attorney’s Office community
  • Office of Legal Policy
  • Off…

Lege Trend. Cyber Security Standards for Tax Preparers in the Flowering Dogwood State

State: Virginia

The legislation: HB 183 (2018) SB 271 (2018) 

What’s required by Virginia’s HB 183 and SB 271?

  • Any income tax preparer in Virginia has to notify the VA Department of Taxation of a cyber security breach 
  • Notification is triggered by when the tax preparer discovers the breach and must be done without unreasonable delay

Is there a cost savings according to the bill’s author? Yes, the state will save $300,000 a year because the state Department of Taxation won’t be issuing…

REGUALTORY TREND. More Transparency for Businesses on Data Security + Coming to a State Near You.

SEC adopted new rules this week to require greater disclosure of cybersecurity threats by businesses. 

What you need to know:

  • prohibits trading on insider cyber security knowledge
  • companies are urged to develop policies that allow them to quickly assess cybersecurity risks and decide when to tell the public
  • prohibits companies from using internal or law enforcement investigations as an excuse for not informing the public.

Tech Crunch | The SEC says companies must disclose more information…

Regulatory TREND. Cybersecurity and Energy New federal Office. 4 Key Points.

The new oversight:  Office of Cybersecurity, Energy Security, and Emergency Response at the Energy Department

Head of the new office:   will be led by an Assistant Secretary

Policy Goals of the new office:

  • energy infrastructure security
  •  support the expanded national security responsibilities
  • coordination and focus on protecting energy infrastructure, like the electric grid, from cyber and foreign attacks & natural threats

Funding: $96 million

Department of Energy | Secretary of Energy…

5 Points. Unanimous Data Security Bill Post- Equifax.

Oregon’s SB 1551 (2018)  will require:

  • notification to consumers of a data breach within 45 days unless it could hinder law enforcement
  • if more than 250 Oregonians are affected, then notice must also go to the state Attorney General
  • a violation triggers Deceptive Trade Practices Act 
    • this means class action lawsuits
    • this also means big fines
  • no fees for credit freezes or thaws
  • prohibits ‘ “upselling” by breached companies or third-party contractors when they offer people free credit…

Business TREND. TRUST CHARTER to partner Business & Government in Data Security. 8 partners. 2 fundamentals.

The 8 partners in the TRUST CHARTER:

  • Siemens
  • Munich Security Conference
  • Airbus
  • Allianz
  • Daimler Group
  • IBM
  • NXP
  • SGS
  • Deutsche Telekom

Action Areas for Business and Government:

  • A call to responsibility at the highest levels of government and business with a dedicated government section and chief information officer at organizations
  • Companies must develop mandatory, third-party certification for infrastructure and solutions

“Governments must take a leadership role when it comes to the…

Lege TREND. Blockchain Bills in the Goldenrod flower state. 3 Key Elements to the Bills with Local Government Preemption

State: Nebraska

The legislation: 

  • LB 987 Bitcoin as acceptable currency
  • LB 691 Virtual Currency Money Laundering Act
  • LB 694  State preemtion on blockchain technology & prohibits local taxing of blockchain
  • LB 695 Blockchain state contracting

LB 694 & 695 will require that:

  • blockchain signatures are legally valid in Nebraska
  • smart contracts are valid in all commerce in Nebraska
  • local governments cannot tax, license or regulate blockchain technology

Omaha World Herald | Nebraska…

New Coalition. Against Card Skimming.

State: Alabama

What entity organized the coalition against card skimming? Alabama’s Attorney General

The new coalition against card skimming: Alabama Focus Group on Skimming

What entities comprise the coalition?

  • U.S. Secret Service
  • Alabama Department of Agriculture and Industries
  • Alabama Department of Transportation
  • Alabama Fusion Center
  • Alabama Law Enforcement Agency
  • Alabama Petroleum Equipment Contractors Association
  • Petroleum & Convenience Marketers of Alabama
  • Alabama Attorney…

Procurement Opportunity. State Cyber Crime Labs. Anatomy of a State Cyber Crime Lab.

State: Alabama

Agency Housing the Cyber Crime Lab: Attorney General Office

What tools does the operator of a cyber crime lab need?

  • talent to unlock cell phone evidence
  • talent to track down credit/debit card skimmers
  • talent to unmask criminals behind identity theft
  • talent to help businesses &  local governments recover revenue  lost in cyber theft 

AL.com | State launches lab to fight growing problem of cyber crime