Recent guidance issued by the Department of Health and Human Services (“HHS”) clarifies the extent to which cloud service providers are subject to the privacy, security, and breach notification rules under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).
Last month, in Galaria v. Nationwide Mutual Insurance Co., Nos. 15-3386/3387 (6th Cir. Sept. 12, 2016), the Sixth Circuit issued a decision finding standing for a class of plaintiffs in a data breach class action.
National Cyber Security Awareness Month begins this week. Each October, the Department of Homeland Security kicks off a national public awareness campaign that encourages businesses and individuals to take steps to protect themselves from cyber threats.
To pay or not to pay. That has been the question in relation to ransomware, the pernicious and now ubiquitous attack that locks your systems and files, and demands ransom for the “key” to unlock them.
The National Institute of Standards and Technology recently released its guidance on the proliferation of mobile-related threats to network security. NIST’s recent guidance can be found here: http://csrc.nist.gov/publications/drafts/nistir-8144/nistir8144_draft.pdf.