On April 29, 2015, the Department of Justice’s Criminal Division will host a cybersecurity industry roundtable on data breaches. The event, which will include audience question and answer sessions, will focus on a range of recent industry … [Read more] about DOJ to Host Cybersecurity Roundtable on Data Breaches
SEC Confirms Plans To Issue New Cybersecurity Disclosure Rules
According to Smeeta Ramarathnam, Chief of Staff to SEC Commissioner Luis Aguilar, the SEC is currently engaging in a comprehensive re-work of its investor disclosure rules, including with respect to rules bearing on cybersecurity incident disclosure. … [Read more] about SEC Confirms Plans To Issue New Cybersecurity Disclosure Rules
HHS Issues Guidance on HIPAA and Workplace Wellness Programs
On Thursday, April 16, 2015, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) issued guidance, consisting of two frequently asked questions (FAQs), on the application of the HIPAA Privacy, Security, and … [Read more] about HHS Issues Guidance on HIPAA and Workplace Wellness Programs
FTC Proposes Settlement with Two Companies Over False Safe-Harbor Claims
On April 7, 2015, two U.S. companies agreed to settle Federal Trade Commission (“FTC”) allegations that they falsely claimed to be in compliance with the U.S.-EU Safe Harbor Framework and the U.S.-Swiss Safe Harbor Framework. In the concurrently … [Read more] about FTC Proposes Settlement with Two Companies Over False Safe-Harbor Claims
PCI-DSS Standard Updated To Address SSL Vulnerabilities
On April 15, 2015, the Payment Card Industry Security Standards Council (PCI-SSC) updated the PCI Data Security Standard (PCI-DSS) from version 3.0 to version 3.1. The new version is effective immediately. PCI DSS Version 3.0 will be retired on June … [Read more] about PCI-DSS Standard Updated To Address SSL Vulnerabilities