Our experienced team views data breach response as a joint effort in partnership with the client where the client’s philosophy, brand and customer base are considered integral in reconciling compliance with the numerous, and often competing, laws and regulations. [...]
Chinese Military Hacking U.S. Businesses?
Computer Security firm, Mandiant, Corp., recently released a comprehensive report [pdf] exposing cyber espionage by a specialized Chinese military unit. The 60 page study details 141 separate attacks directed primarily at U.S. corporations and U.S. government agencies. The attacks are said to originate from “Unit 61398″, a secret department within the People’s Liberation Army located in Shanghai. Coca-Cola … Continue reading
Credit/Debit Card Breach at Barnes & Noble Exposes Holes in Point of Sale Systems
Hackers gained access to credit card information from customers at 63 Barnes & Noble stores. Although the incident was first discovered in September, the FBI requested that Barnes & Noble delay publicly reporting the incident so as not to impede the investigation. Somehow, and the exact methodology has not been revealed, hackers were able to capture information from PIN … Continue reading
Cyber Warfare and Collateral Damage: “Flame” Malware Heats Up Data Security Threat
Cyber Security experts have discovered new malware that is unique in its sophistication and frightening in its capabilities. The malware, known as “Flame”, was found during an investigation by Russia-based Kaspersky Lab, and may have been running undetected for more than two years. Flame has set off alarm bells due to its complexity and because it appears to be part of … Continue reading
If the Shoe Fits . . . File a Class Action? Zappos Data Breach Leads to Quick Lawsuit.
Less than 24 hours after the Zappos data breach was announced, a class action lawsuit was filed against Amazon.com (Zappos is owned by Amazon). The Complaint [pdf] purports to be asserted on behalf of a putative class of 24 million customers whose information was exposed in the Zappos hacking incident. While 24 million individuals, not to mention the name recognition and … Continue reading
U.S. Senate Considers Legislation to Protect Sensitive Data and Consumer Privacy
The U.S. Senate Committee on Commerce, Science & Transportation held a hearing on June 29th focusing on proposed legislation intended to protect consumer privacy. Private industry and government agency hearing witnesses expressed support for pending bills in the Senate. Among the pending privacy bills discussed were: S.799 – The Commercial Privacy Bill of Rights Act of 2011; S. 913 – … Continue reading
House Committee Generates Support for Data Security Legislation
Executives from Sony Network Entertainment and Epsilon Data Management recently testified at a House Energy and Commerce Committee hearing. Ostensibly, the hearing was held to further examine the recent Sony and Epsilon data breaches, and the state of the ongoing investigations. While there was some gentle criticism related to the handling of the breaches, the … Continue reading
Sony’s Security Woes Continue
Even as Sony finally brings its PlayStation Network (PSN) back online after a massive security breach that began in April, it still remains a tempting target for hackers. In recent days there have been at least three Sony related incidents. Sony has shut down a website that had been set up to allow users to reset their passwords in … Continue reading