Hacker

Florida Water Hack Shows Danger of Remote Access Vulnerabilities

Posted on February 11, 2021

On February 8, 2021, Pinellas County, Florida officials announced that a hacker had remotely gained access to the City of Oldsmar’s water treatment system on two separate occasions and was able to change the setting for sodium hydroxide in the water supply. The incident highlights the danger to local government information systems and the dangers of remote access vulnerabilities.…
Continue Reading Florida Water Hack Shows Danger of Remote Access Vulnerabilities

D.C. Court Rejects Attorney-Client Privilege and Work Product Protections in Data Breach Case

Posted on January 13, 2021

Posted in Information Security, Security Breach, U.S. Federal Law

On January 12, 2021, in Wengui v. Clark Hill, PLC, et al., the United States District Court for the District of Columbia rejected a law firm defendant’s assertions of the attorney-client privilege and work product doctrine for forensic reporting and other related information associated with its outside counsel’s data breach investigation. …
Continue Reading D.C. Court Rejects Attorney-Client Privilege and Work Product Protections in Data Breach Case

ICO Fines Ticketmaster 1.25 Million Pounds for Security Failures

Posted on November 16, 2020

Posted in Cybersecurity, Enforcement, International, Security Breach

On November 13, 2020, the UK Information Commissioner’s Office fined Ticketmaster UK Limited £1.25 million for failing to keep its customers’ personal data secure.…
Continue Reading ICO Fines Ticketmaster 1.25 Million Pounds for Security Failures

ICO Fines Marriott International £18.4 Million for Security Breach

Posted on October 30, 2020

Posted in International, Security Breach

On October 30, 2020, the UK Information Commissioner’s Office announced its fine of £18.4 for Marriott International, Inc., for violations of the GDPR, a significant decrease from the proposed fine of £99,200,396 announced in July 2019.…
Continue Reading ICO Fines Marriott International £18.4 Million for Security Breach

OCR Settles with Orthopedic Clinic for $1.5 Million for Alleged HIPAA Noncompliance

Posted on September 24, 2020

Posted in Health Privacy, Security Breach

On September 21, 2020, the U.S. Department of Health and Human Services Office for Civil Rights announced a $1.5 million settlement with Athens Orthopedic Clinic PA for alleged violations of the HIPAA Privacy and Security Rules.…
Continue Reading OCR Settles with Orthopedic Clinic for $1.5 Million for Alleged HIPAA Noncompliance

Part 3: The Cost of Ignoring Cybersecurity: A Board’s Role in Overseeing and Managing Cyber Risk

Posted on May 6, 2020

Posted in Cybersecurity, Multimedia Resources

Watch the final part of a weekly series on Cybersecurity Law and Governance originally published by S4 Events featuring Hunton partner Lisa Sotto. …
Continue Reading Part 3: The Cost of Ignoring Cybersecurity: A Board’s Role in Overseeing and Managing Cyber Risk

Part 1: The Cybersecurity Threat Landscape

Posted on April 23, 2020

Posted in Cybersecurity, Multimedia Resources

Watch part 1 of a weekly series on Cybersecurity Law and Governance featuring Hunton partner Lisa Sotto. …
Continue Reading Part 1: The Cybersecurity Threat Landscape

London Breakfast Briefing: Lessons Learned from Recent UK/EU Enforcement Action and Understanding Cybersecurity Threats

Posted on February 26, 2020

Posted in Cybersecurity, Enforcement, European Union, Events, International

Update: We are monitoring the COVID-19 situation and, like many of you, re-assessing our in-person gatherings and events over the next few months. As an immediate step, we have decided to postpone our London Breakfast Meeting and will circulate details of a webinar on this topic shortly. We thank you for your understanding.

On March 17, 2020, Hunton Andrews Kurth LLP will host a breakfast briefing in our London office, with guest speakers from Deloitte’s Cyber Breach Support team, to explore UK and EU cyber enforcement trends and discuss the current cybersecurity threat environment. In the face of record-breaking fines handed out by the regulators, securing networks, hardening systems, and protecting data from cyber attacks is becoming ever more critical. Understanding common cyber threats, including the attack vectors, how they work, and how they can be detected, is key to working with IT security colleagues to protect an organization from cyber attacks and respond to incidents. …
Continue Reading London Breakfast Briefing: Lessons Learned from Recent UK/EU Enforcement Action and Understanding Cybersecurity Threats

NSL Podcast Series: Part 3 Betting on a Breach – How to Prepare for the Inevitable

Posted on February 25, 2020

Posted in Cybersecurity, Multimedia Resources, Security Breach

In the final segment of our three-part podcast series by Never Stop Learning, Hunton partner Lisa Sotto and Eric Friedberg of Stroz Friedberg and Aon’s Cyber Solutions Group discuss practical solutions in preparing for a cyber incident.…
Continue Reading NSL Podcast Series: Part 3 Betting on a Breach – How to Prepare for the Inevitable

NSL Podcast Series: Part 2 on the U.S. “Patchwork Quilt of Regulation” and the Timeline of a Breach

Posted on February 19, 2020

Posted in Cybersecurity, Multimedia Resources, Security Breach

In part two of our podcast by Never Stop Learning, Hunton partner Lisa Sotto and Eric Friedberg of Stroz Friedberg and Aon’s Cyber Solutions Group discuss the fragmented nature of data security law in the U.S. and abroad, and explore the timeline of a breach event. …
Continue Reading NSL Podcast Series: Part 2 on the U.S. “Patchwork Quilt of Regulation” and the Timeline of a Breach

Menu

Privacy & Information Security Law Blog