WannaCry Attack Is a Wakeup Call for Cyber Preparedness
August 01, 2017
Until May 12, 2017, the more highly publicized ransomware incidents were localized targets impacting only one or a small number of businesses. WannaCry made it clear that ransomware could reach a broad cross-section of computers worldwide, at essentially the same time. There are very few, if any, businesses that can safely say they are not targets for cyber-criminals, because at the very least, businesses have personnel records for their employees.
Ransomware Attack on DLA Piper Puts Law Firms, Clients on Red Alert
July 02, 2017
The ransomware attack on June 27 on DLA Piper sounded an alarm for Big Law. The world's biggest firms are just as prone to ransomware attacks as any other company, and the potential ramifications of a network-crippling malware infection are wide-ranging for a service industry that holds the legal fate of corporations in its palm.
Managing Cyber Risks in Medical Practices
July 02, 2017
<b><I>Part One of a Two-Part Article</I></b><p>We often associate cyber-risks with financial institutions, but while the financial sector certainly does deal with cyber-risks, it is by no means the only industry facing such woes. Health care providers are also vulnerable to cyber-liability risks.
Cybersecurity After WannaCry
July 02, 2017
Following the May 2017 WannaCry ransomware infiltration into over 10,000 organizations and individuals in over 150 countries, it is clear that businesses across industries have no choice but to spend time and resources digesting and culling through the cybersecurity information barrage.
Are Your Post-Breach Forensic Reports Privileged?
July 01, 2017
<b><i>A Trend Is Emerging</b></i><p>The Central District of California recently joined the small growing list of courts that have held forensic reports created by outside security companies following a data breach are protected from disclosure in civil litigation in certain circumstances.
Asserting Damages for Data Piracy Under the CFAA
July 01, 2017
When a database is breached in one way or another, the results can be devastating. Many companies suffering this kind of loss turn to litigation, often under the Computer Fraud and Abuse Act, which prohibits improperly accessing a protected computer. There is, however, a growing consensus in the Second Circuit that recovery of certain forms of damages under the CFAA simply is not permitted.
The DOJ's New Parameters for Evaluating Corporate Compliance Programs
July 01, 2017
The parameters set forth in the DOJ's memorandum have implications not only for the government's evaluation of compliance programs in the context of criminal charging decisions, but also for how defense counsel structure their conference-room advocacy seeking declinations or lesser sanctions in both criminal and civil investigations.
