On June 30, 2022, the New York Office of the Attorney General announced a $400,000 agreement with Wegmans Food Markets, Inc. in connection with a cloud storage security issue.
Continue Reading Wegmans Agrees to Pay $400,000 Penalty After Cloud Security Lapse
Microsoft
EDPS Opens Investigations Following Schrems II Judgment
On May 27, 2021, the European Data Protection Supervisor announced that it has opened two investigations regarding (1) the use of cloud services by European Union institutions, bodies and agencies; and (2) the use of Microsoft Office 365 by the European Commission.
Continue Reading EDPS Opens Investigations Following Schrems II Judgment
Court Authorizes FBI to Remove Web Shells from Compromised Microsoft Exchange Servers
On April 13, 2021, the U.S. Department of Justice announced that the Federal Bureau of Investigation executed a court-authorized removal of malicious web shells from hundreds of vulnerable computers in the U.S. …
Continue Reading Court Authorizes FBI to Remove Web Shells from Compromised Microsoft Exchange Servers
Second Circuit Holds Microsoft Cannot Be Compelled to Turn Over Emails Stored Abroad
On July 14, 2016, the U.S. Court of Appeals for the Second Circuit held that Microsoft Corporation cannot be compelled to turn over customer emails stored abroad to U.S. law enforcement authorities.
Continue Reading Second Circuit Holds Microsoft Cannot Be Compelled to Turn Over Emails Stored Abroad
NTIA Announces Cybersecurity Stakeholder Meeting
On July 9, 2015, the National Telecommunications and Information Administration announced the launch of its first cybersecurity multistakeholder process, in which representatives from across the security and technology industries will meet in September to discuss vulnerability research disclosure.
Continue Reading NTIA Announces Cybersecurity Stakeholder Meeting
Irish Government Files Amicus Brief in Microsoft Case
The Irish government filed an amicus brief in the ongoing dispute between Microsoft and the U.S. government concerning the U.S. government’s demands for data held by Microsoft on email servers located in Ireland.
Continue Reading Irish Government Files Amicus Brief in Microsoft Case
Industry, Privacy Advocates Join Microsoft to Protect Customer Emails in Foreign Servers
On December 15, 2014, Microsoft reported the filing of 10 amicus briefs in the 2nd Circuit Court of Appeals signed by leading technology and media companies, computer scientists and trade associations and advocacy organizations, in support of Microsoft’s litigation to resist a U.S. Government’s search warrant purporting to compel the production of Microsoft customer emails that are stored in Ireland.
Continue Reading Industry, Privacy Advocates Join Microsoft to Protect Customer Emails in Foreign Servers
U.S. Court Rules Microsoft Must Release User Data Stored Overseas
On April 25, 2014, a federal district court judge in New York ruled that Microsoft must release user data to U.S. law enforcement when issued a search warrant, even if the data is stored outside of the U.S.
Continue Reading U.S. Court Rules Microsoft Must Release User Data Stored Overseas
Luxembourg DPA Will Not Investigate Microsoft or Skype over Involvement in the PRISM Program
The Luxembourg data protection authority has stated that it will not investigate complaints relating to the alleged involvement of Microsoft Luxembourg and Skype Software S.a.r.l. and Skype Communications S.a.r.l. in the PRISM surveillance program.
Continue Reading Luxembourg DPA Will Not Investigate Microsoft or Skype over Involvement in the PRISM Program
Microsoft to Introduce Tracking Protection with IE9
On December 7, 2010, Microsoft announced that Internet Explorer 9 will introduce new online tracking protection features.
…
Continue Reading Microsoft to Introduce Tracking Protection with IE9