Featured

Spreading the word about cyber risk

Each October the Department of Homeland Security celebrates National Cyber Security Awareness Month, a national public awareness campaign that encourages businesses and individuals to take steps to protect themselves from cyber threats.

Continue reading
Featured

Cybersecurity Regulations Can Move at Lightning Speed; Don’t Get Burned!

As we have noted previously on the new DFS cybersecurity regulations, 23 N.Y.C.R.R. Part 500, the regulatory process is—by definition—vastly more swift and adaptable than the legislative process. What may get bogged down in legislative committee for months or years can be hammered out in a matter of days in the administrative state.

Continue reading
Featured

What does the Equifax breach mean to your organization? Quite a lot, actually.

The sheer size of the recent Equifax breach—affecting nearly half of all Americans and potentially more than half of those over 18—is staggering.  It is the nature of the breach, however, and the type of information taken, that gives the greatest pause.

Continue reading
Featured

Paid Family Leave Benefits are Taxable (and other news)

For more than two years now, we’ve spoken and presented to various groups on New York’s Paid Family Leave Benefits Law (PFL), dozens, and dozens, and dozens of times. Like clockwork, one of the curious attendees would always ask whether PFL benefit payments would be taxable and whether PFL employee contributions would be pre- or post-tax deductions. Each time, we’d be forced to answer something along the lines of, “we don’t know yet— reasonable minds can disagree, and we are waiting on promised guidance on this from the state.” Well, throw that old answer out; we now know! The answers are the seemingly incongruous “taxable” and “post-tax.”

Continue reading
Featured

Attorneys General from 32 States and the District of Columbia Throw Their Collective Weight Behind Data Breach Settlement

On October 3, 2012, Nationwide Mutual Insurance Company and its wholly-owned subsidiary Allied Property & Casualty Insurance Company experienced a data breach when a hacker exploited a vulnerability on the companies’ web application hosting software. This hack resulted in the compromise of the personal information of 1.27 million consumers, including social security numbers, driver’s license numbers, credit scoring information, and other data used to provide insurance quotes.

Continue reading