• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

Security Breach

NY AG’s Office Announces Significant Cybersecurity Settlement with Healthcare Company

January 16, 2024 By Kim Peretti, Alysa Austin and Andrew Rice

On January 5, 2024, the New York Attorney General’s Office (“NY AG”) announced a settlement with Refuah Health Center, Inc. (“Refuah”) based on the company’s alleged failures to appropriately safeguard its patients’ information, including failing to encrypt patient information or use multifactor authentication, which allegedly resulted in a May 2021 ransomware attack that impacted approximately […]

Filed Under: Cyber Risk, Cybersecurity, Data Protection, Data Security, Security Breach

FCC Plans to Update Data Breach Notification Rules

December 12, 2023 By Kim Peretti and Lance Taubin

After a decade and a half under the current data breach notification rules for telecommunications carriers and telecommunications relay services (TRS) providers, the FCC recently unveiled plans to update and expand them. On November 22, 2023, the FCC issued a Report and Order that it intends to consider at its December 13th meeting that would […]

Filed Under: Data Breach, Regulation, Security Breach Tagged With: Data Breach Notification, Federal Communications Commission (FCC), Regulations

Ransomware Group, in Midst of Extortion Attempt, Files Regulatory Notice with SEC

November 17, 2023 By Kim Peretti, Kate Hanniford, Alysa Austin and Lance Taubin

Just a month before the Security and Exchange Commission’s (“SEC’s”) Material Cybersecurity Incidents Rule is set to take effect, a ransomware group has apparently taken compliance with reporting requirements into its own hands.  On November 15, 2023, the ransomware group known as BlackCat (also known as “AlphV”) posted a notice on its leak site alleging […]

Filed Under: Cybercrime, Cybersecurity, Data Security, Ransomware, SEC, Security Breach

New York Continues to Focus on Companies’ Data Security Practices

October 6, 2023 By Kim Peretti and Kristen Bartolotta

New York Attorney General Letitia James recently announced two agreements related to data breaches with entities that operate in the education industry. In both instances the entities paid the ransom and received evidence of deletion of the stolen data. Most recently, on October 5, 2023 the Office of the Attorney General (OAG) announced a $49.5 […]

Filed Under: Cybercrime, Cybersecurity, Data Breach, Data Protection, Data Security, Enforcement, Ransomware, Security Breach Tagged With: Cybersecurity, Data Breach Notification, Data Protection, New York Attorney General, Regulatory Enforcement, Settlement

Maryland Amends Data Breach and Reasonable Security Requirements

July 5, 2022 By Kim Peretti, Kate Hanniford and Lance Taubin

Maryland recently passed House Bill 962, amending Maryland’s Personal Information Protection Act (PIPA) (Md. Code Ann. Comm. Law 14-3504). As summarized below, House Bill 962 amends certain aspects of PIPA relating to breach notification and maintaining reasonable security measures to protect personal information. The bill becomes effective October 1, 2022. Reasonable Security: Beginning October 1, […]

Filed Under: Data Breach, Data Protection, Data Security, Security Breach

  • « Go to Previous Page
  • Page 1
  • Page 2
  • Page 3
  • Page 4
  • Interim pages omitted …
  • Page 19
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


RANSOMWARE FUSION CENTER
Click here to request access

THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up

@ALSTONPRIVACY
Click here to follow us on Twitter

Secondary Sidebar

Categories

Recent Posts

  • Back from the Brink: District Court Clears Air Regarding Individualized Damages Assessment in Data Breach Cases
  • UK Data Protection Regulator Fines 23andMe ~$3.1 Million Following Credential Stuffing Attack
  • NYDFS Issues Guidance on Heightened Cybersecurity and Sanctions Risk from Global Conflict
  • Are You Ready For The Department Of Justice’s Bulk Data Transfer Rule?
  • Trump Administration Releases Cyber Executive Order Revealing Renewed Strategy for U.S. Cybersecurity
Copyright © 2025 · Alston & Bird · All Rights Reserved. Privacy.
This website uses cookies to improve functionality and performance. By continuing to browse this site, you are consenting to the use of cookies on this website. OkCookie policy