Patrick Gunning from King & Wood Mallesons reports that, on November 2, 2023, the Australian Information Commissioner filed proceedings in the Federal Court of Australia against Australian Clinical Labs Limited seeking a civil penalty in connection with the company’s response to a data breach that occurred in February 2022.
Continue Reading Australian Privacy Regulator Sues in Data Breach Case
Ransomware
HHS Announces First HIPAA Settlement Agreement Involving Ransomware Attack
On October 31, 2023, the Department of Health and Human Services announced the issuance of a settlement agreement with Doctors’ Management Services, a Massachusetts-based medical management company, related to alleged violations of the Health Insurance Portability and Accountability Act’s Privacy and Security Rules. …
Continue Reading HHS Announces First HIPAA Settlement Agreement Involving Ransomware Attack
NYDFS Updates Its Cybersecurity Regulation to Protect Against Growing Cyber Threats
On November 1, 2023, New York Governor Hochul announced that the New York State Department of Financial Services amended its Cybersecurity Regulation applicable to covered financial institutions. …
Continue Reading NYDFS Updates Its Cybersecurity Regulation to Protect Against Growing Cyber Threats
Blackbaud to Pay $49.5 Million in Data Breach Settlement
On October 5, 2023, Blackbaud Inc., a software provider for the philanthropy, healthcare, and education sectors, has resolved claims that the District of Columbia and 49 U.S. states raised.
Continue Reading Blackbaud to Pay $49.5 Million in Data Breach Settlement
SEC Brings Cyber Disclosure Enforcement Action
On March 9, 2023, the U.S. Securities and Exchange Commission announced settled administrative charges against Blackbaud Inc.
Continue Reading SEC Brings Cyber Disclosure Enforcement Action
White House Releases National Cybersecurity Strategy
On March 2, 2023, the Biden-Harris Administration announced the release of the National Cybersecurity Strategy.
Continue Reading White House Releases National Cybersecurity Strategy
Claimant to Maintain Anonymity in English High Court Cyber Attack Case
On December 20, 2022, the English High Court has granted the victim of a cyber attack a permanent injunction against cyber attackers whilst the victim organization maintains its anonymity.
Continue Reading Claimant to Maintain Anonymity in English High Court Cyber Attack Case
NYDFS Amends Cybersecurity Rules for Financial Services Companies
On November 9, 2022, the New York Department of Financial Services released their second amendments to their Part 500 Cybersecurity Rules.
Continue Reading NYDFS Amends Cybersecurity Rules for Financial Services Companies
TSA Issues New Railroad Cybersecurity Requirements
On October 18, 2022, the Transportation Security Administration issued a new cybersecurity directive requiring passenger and freight railroad carriers to create plans for responding to cybersecurity incidents. …
Continue Reading TSA Issues New Railroad Cybersecurity Requirements
Biden-Harris Administration Statement on Cybersecurity in America
On October 11, 2022, the Biden-Harris Administration released an informational statement about the current administrations’ progress in strengthening America’s national cybersecurity. …
Continue Reading Biden-Harris Administration Statement on Cybersecurity in America