Luke Irwin Archive
Just months earlier, the attorney generals from all U.S. states announced that California-based Uber was hit with a $148 million fine for failing to report a 2016 data breach. Now, the UK’s ICO (Information Commissioner’s Office) has fined Uber £385,000 …
Law firms arguably hold more sensitive data than any other type of business. After all, it’s not only their corporate data they need to account for, but also that of their clients. Files and servers contain intellectual property information, financial …
A version of this blog was originally published on April 24 2018. Although the EU GDPR (General Data Protection Regulation) is now in effect, many organizations are still working towards compliance. One part of the Regulation tripping people up is …
Indian-based food delivery service provider FreshMenu is facing a fierce backlash after it was found to have covered up a data breach affecting 110,000 customers. HIBP (Have I Been Pwned) disclosed the incident in September 2018, but said the breach …
On November 5, 2018, millions of Americans will go to the polls to vote in the midterm elections. But, unfortunately, much of the election discussion isn’t about politics but cybersecurity. You probably recall that the last major U.S. election was …
The House Financial Services Committee has passed a bill that standardizes data breach notification requirements in the financial industry. The bill, which amends the GLBA (Gramm-Leach-Bliley Act), had been criticized for taking power away from state regulators. However, its advocates said that …
When implementing defenses to keep data secure, organizations should rightly put a lot of effort into preventing external actors penetrating them, but as the 2018 BCI Horizon Scan Report reminds us, there are many other things to prepare for. The report asked …
The influence of the EU GDPR (General Data Protection Regulation) has reached Ohio. On August 3, 2018, Governor John Kasich signed into law Senate Bill 220, which rewards organizations for strengthening their cybersecurity measures. The Bill states that organizations that …
If your organization collects EU residents’ personal data and you aren’t compliant with the EU GDPR (General Data Protection Regulation), you’d better start preparing. The GDPR, which came into effect on 25 May 2018, introduces strict rules on data collection, …
Most organizations will do anything within their budget to prevent cyber attacks, but senior staff are often given conflicting advice on where to spend their money. Should they invest in the latest technological defenses? And which technologies? Should they overhaul …
