Law Firm Security Goes Back to School
March 01, 2018
Armed with technical and regulatory weapons for preventing cyber crimes, law firms must administer policies to protect client data and use the systems and services held standard by industries like medicine and banking. No one knows when disruption will take place. New methods of adverse action force executives to make more choices and decisions. All departments must merge their vigilance and join with IT services as IT takes center stage in order to stay prepared.
How Law Firms and Legal Departments Can Protect Against Meltdown and Spectre
March 01, 2018
In January, news of the Meltdown and Spectre vulnerabilities rocked the cybersecurity world. And even a few months later, the news is still reverberating, due to several patches that are significantly slowing down device and system performance. To learn more about these vulnerabilities and how law firms and legal departments can protect against them now and in in the future, I sat down with Dana Simberkoff, Chief Risk, Privacy and Information Security Officer at AvePoint.
Court of Appeals Reaffirms that Deference Is Alive and Well When It Comes to Substantive Requirements of SEQRA EISs
March 01, 2018
The New York Court of Appeals has long established that an agency's assessment of environmental impacts pursuant to the New York State Environmental Quality Review Act, or SEQRA, is entitled to substantial deference, admonishing lower courts that it is not their role to substitute their judgment for the judgment of agencies undertaking the action. Sometimes, however, lower courts give lip service to the deferential standard of review but fail to apply it.
China's Cybersecurity Law Isn't Just About Cybersecurity
March 01, 2018
The law — which includes data localization mandates, cybersecurity best practices, and data transfer restrictions — has similarities to other cyber laws such as the EU's General Data Protection Regulation (GDPR). But in this case, it's also being used to police internet content and behavior.
Supreme Court Asked, Again, to Weigh In on Data Breach Standing as Circuit Split Widens
March 01, 2018
CareFirst, a large health care company involved in a data breach case, asked the U.S. Supreme Court to weigh in on whether victims can establish Article III standing to sue for the risk of future identity theft. The Court denied the request, leaving intact a recent district court holding that consumers could successfully plead such a claim issue — and leaving a split among the federal appellate courts.