Email

Second Circuit Affirms Dismissal of Data Breach Class Action on Article III Standing Grounds

Posted on April 27, 2021

Posted in Identity Theft, Information Security, Security Breach, Workplace Privacy

As reported on the Hunton Retail Law Blog, the U.S. Court of Appeals for the Second Circuit has affirmed the dismissal on Article III standing grounds of a data breach class action predicated on an alleged increased risk of identity theft. Notably, the district court that dismissed the action raised the issue of standing sua sponte in advance of a scheduled class settlement fairness hearing.…
Continue Reading Second Circuit Affirms Dismissal of Data Breach Class Action on Article III Standing Grounds

Court Authorizes FBI to Remove Web Shells from Compromised Microsoft Exchange Servers

Posted on April 15, 2021

Posted in Cybersecurity, U.S. Federal Law

On April 13, 2021, the U.S. Department of Justice announced that the Federal Bureau of Investigation executed a court-authorized removal of malicious web shells from hundreds of vulnerable computers in the U.S. …
Continue Reading Court Authorizes FBI to Remove Web Shells from Compromised Microsoft Exchange Servers

NYDFS Settles with Mortgage Company for Data Breach

Posted on March 11, 2021

Posted in Cybersecurity, Enforcement, Financial Privacy, U.S. State Law

The New York Department of Financial Services recently announced it had entered into a settlement with Residential Mortgage Services, Inc. related to allegations that the company violated the NYDFS Cybersecurity Regulation in connection with a 2019 data breach. …
Continue Reading NYDFS Settles with Mortgage Company for Data Breach

UK ICO Fines Pensions Release Provider for Unsolicited Marketing Emails

Posted on April 3, 2019

Posted in Enforcement, European Union, International, Marketing

The UK Information Commissioner’s Office has issued a Monetary Penalty Notice to pensions release provider Grove Pensions Solutions Ltd, fining it £40,000 after the company used contact details collected by a third party for its direct marketing campaign.…
Continue Reading UK ICO Fines Pensions Release Provider for Unsolicited Marketing Emails

UK ICO Fines Vote Leave £40,000 for Unsolicited Texts

Posted on March 22, 2019

Posted in European Union, International, Marketing

The UK’s Information Commissioner’s Office has fined Vote Leave Limited (the UK’s official Brexit campaign) £40,000 for sending almost 200,000 unsolicited texts promoting the aims of the campaign.…
Continue Reading UK ICO Fines Vote Leave £40,000 for Unsolicited Texts

HHS Publishes Health Industry Cybersecurity Practices

Posted on January 10, 2019

Posted in Cybersecurity, Health Privacy, Information Security, Security Breach

The U.S. Department of Health and Human Services recently published “Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients,” which was developed by the Healthcare & Public Health Sector Coordinating Councils Public Private Partnership, a group comprised of over 150 cybersecurity and healthcare experts from government and private industry.…
Continue Reading HHS Publishes Health Industry Cybersecurity Practices

Sixth Circuit Declines Reconsideration of American Tooling Center’s “Spoofing” Win

Posted on August 30, 2018

Posted in Cyber Insurance

Recently, the Sixth Circuit rejected Travelers Casualty & Surety Company’s request for reconsideration of the court’s July 13, 2018, decision confirming that the insured’s transfer of more than $800,000 to a fraudster after receipt of spoofed emails was a “direct” loss that was “directly caused by” the use of a computer under the terms of…

Second Circuit Stands By Medidata “Spoofing” Decision

Posted on August 28, 2018

Posted in Cyber Insurance, Enforcement, Security Breach

The Second Circuit has rejected Chubb subsidiary Federal Ins. Co.’s request for reconsideration of the court’s July 6, 2018, decision, confirming that the insurer must cover Medidata’s $4.8 million loss under its computer fraud insurance policy.…
Continue Reading Second Circuit Stands By Medidata “Spoofing” Decision

FTC Study Recommends Wider Implementation of DMARC to Combat Phishing Attacks

Posted on March 14, 2017

Posted in Information Security, Online Privacy

On March 3, 2017, the FTC announced the results of a study about online businesses’ use of proper email authentication technology to prevent phishing attacks. …
Continue Reading FTC Study Recommends Wider Implementation of DMARC to Combat Phishing Attacks

House of Representatives Passes Email Privacy Act

Posted on February 9, 2017

Posted in Information Security, Online Privacy

On February 6, 2017, the House of Representatives suspended its rules and passed by voice vote H.R 387, the Email Privacy Act. The Email Privacy Act now moves to the Senate, where it will be considered by the Senate Judiciary Committee. …
Continue Reading House of Representatives Passes Email Privacy Act

Menu

Privacy & Information Security Law Blog