On January 28, 2018, Facebook published its privacy principles and announced that it will centralize its privacy settings in a single place.
Continue Reading Facebook Publishes Privacy Principles and Announces Introduction of Privacy Center
Information Sharing
China Releases National Standard on Personal Information Security
Posted on
On January 25, 2018, the Standardization Administration of China published the full text of the Information Security Technology – Personal Information Security Specification.
Continue Reading China Releases National Standard on Personal Information Security
FTC Recaps Connected Cars Privacy and Security Workshop
Posted on
Posted in Cybersecurity, Information Security
On January 9, 2018, the FTC issued a paper recapping the key takeaways from the FTC’s and National Highway Traffic Safety Administration’s June 2017 workshop on privacy and security issues involving connected cars. The workshop featured representatives from consumer groups, industry, government and academia.
Continue Reading FTC Recaps Connected Cars Privacy and Security Workshop
The CNIL Serves Formal Notice to WhatsApp Regarding Sharing Data with Facebook
Posted on
On December 18, 2017, the French data protection authority publicly announced that it served a formal notice to WhatsApp regarding the sharing of WhatsApp users’ data with Facebook Inc. This decision, dated November 27, 2017, follows the investigations led by the CNIL regarding Facebook’s 2014 acquisition of WhatsApp.
Continue Reading The CNIL Serves Formal Notice to WhatsApp Regarding Sharing Data with Facebook
NIAC Issues Recommendations to Improve Critical Infrastructure Cybersecurity
Posted on
Posted in Cybersecurity, Information Security
On August 22, 2017, the National Infrastructure Advisory Council issued a report entitled Securing Cyber Assets: Addressing Urgent Cyber Threats to Critical Infrastructure. The NIAC Report notes that sophisticated and readily available malicious cyber tools and exploits have lowered the barrier to cost and increased the potential for successful cyber attacks. …
Continue Reading NIAC Issues Recommendations to Improve Critical Infrastructure Cybersecurity
Germany Issues Ethics Report on Automated and Connected Cars
Posted on
Posted in Information Security, International
On June 20, 2017, the German Federal Ministry of Transport and Digital Infrastructure issued a report on the ethics of Automated and Connected Cars. The Report was developed by a multidisciplinary Ethics Commission established in September 2016 for the purpose of developing essential ethical guidelines for the use of automated and connected cars. …
Continue Reading Germany Issues Ethics Report on Automated and Connected Cars
Neiman Marcus Agrees to Settlement in Data Breach Class Action
Posted on
On March 17, 2017, retailer Neiman Marcus agreed to pay 1.6 million dollars as part of a proposed settlement to a consumer class action lawsuit stemming from a 2013 data breach that allegedly compromised the credit card data of approximately 350,000 customers.
Continue Reading Neiman Marcus Agrees to Settlement in Data Breach Class Action
Federal Energy Regulatory Commission Publishes Final CEII Regulations
Posted on
Posted in Information Security, U.S. Federal Law
Last month, the Federal Energy Regulatory Commission published its final Regulations Implementing FAST Act Section 61003-Critical Electric Infrastructure Security and Amending Critical Energy Infrastructure Information. The CEII Regulations are intended to implement new authority granted to FERC by the Fixing America’s Surface Transportation Act, which became law in December 2015.
Continue Reading Federal Energy Regulatory Commission Publishes Final CEII Regulations
NHTSA Releases New Automobile Cybersecurity Best Practices
Posted on
The National Highway Safety Administration (“NHTSA”) recently issued non-binding guidance that outlines best practices for automobile manufacturers to address automobile cybersecurity. The guidance, entitled Cybersecurity Best Practices for Modern Vehicles (the “Cybersecurity Guidance”), was recently previewed in correspondence with the House of Representatives’ Committee on Energy and Commerce (“Energy and Commerce Committee”).
Continue Reading NHTSA Releases New Automobile Cybersecurity Best Practices
NHTSA Set to Release New Automobile Cybersecurity Best Practices
Posted on
Posted in Cybersecurity
On October 14, 2016, the National Highway Transportation Administration indicated in a letter to Congress that it intends to issue new best practices on vehicle cybersecurity. This letter came in response to an earlier request from the House Committee on Energy and Commerce that NHTSA convene an industry-wide effort to develop a plan to address vulnerabilities posed to vehicles by On-Board Diagnostics ports. …
Continue Reading NHTSA Set to Release New Automobile Cybersecurity Best Practices