Category: Cybersecurity

November 13, 2014

Where to Draw the Line With Undercover FBI Operations

Several news publications have been making much ado about a tactic the FBI used in 2007 to locate an individual suspected in a series of bomb-threats to Washington state high schools. The FBI created a fake news article, falsely representing it as an Associated Press publication, and sent a link to the suspect’s MySpace account…. Read More

September 4, 2014

Federal Trade Commission Checks Out Mobile Shopping Apps

  In August, the Federal Trade Commission (“FTC”) released a staff report concerning mobile shopping applications (“apps”).  FTC staff reviewed some of the most popular apps consumers utilize to comparison shop, collect and redeem deals and discounts, and pay in-store with their mobile devices.  This new report focused on shopping apps offering price comparison, special… Read More

May 13, 2014

SEC Takes Proactive Approach to Cybersecurity

Last month, the Securities and Exchange Commission’s (“SEC”) Office of Compliance Inspections and Examinations (“OCIE”) formally announced its cybersecurity initiative in a Risk Alert. The initiative followed up on OCIE’s announced prioritization of cybersecurity preparedness as part of its 2014 Examination Priorities. The initiative is also timely because the general public is becoming more conscious… Read More

April 17, 2014

Don’t be a Jerk

Last week the Federal Trade Commission (“FTC”) charged the operators of Jerk.com with harvesting personal information from Facebook to create profiles for more than an estimated 73 million people, where they could be labeled a “Jerk” or “not a Jerk.” In the complaint, the FTC charged the defendants, Jerk, LLC and the operator of the… Read More

April 14, 2014

“Heartbleed” Bug – Antibiotics Won’t Help, Changing Passwords Might

After recovering from high-profile data breaches at Target and Neiman Marcus, signing up for free credit monitoring and analyzing our credit reports, a new Internet villain recently emerged:  the “Heartbleed Bug.”  The Heartbleed Bug is a security flaw present on Open SSL, popular software run on most webservers.  This open source software is widely used… Read More

March 19, 2014

FTC Secures Nine Figure Judgment Against Single Co-Defendant in Scareware Case

After the FTC secured a $163MM judgment against Kristy Ross in the US District Court of Maryland, the 4th Circuit affirmed, and so ends the FTC’s six-year “scareware” enforcement action. From beginning to end, this odyssey has been quite colorful, to say the least. The nine-figure judgment against Ross is no exception. Originally, there were… Read More

February 25, 2014

Attorney General Holder Calls on Congress to Establish Strong National Data Breach Notification Standard

By Michelle Cohen, CIPP-US Yesterday, in his weekly video address, Attorney General Eric Holder urged Congress to create a national data breach notification standard requiring companies to quickly notify consumers of a breach of their personal or financial information.  In the wake of the high profile holiday season data breaches at retailers Target and Neiman Marcus,… Read More

January 29, 2014

Can Violating Social Media Terms of Use Make You Guilty of Violating the CFAA?

LinkedIn has filed a suit against John Does in response to a spate of “data scraping” perpetrated by unknown individuals, in violation of the website’s terms and conditions.This is the latest federal case in the Northern District of California in which a tech company seeks to enforce its contractual provisions through the criminal statute Computer… Read More

January 28, 2014

Data Privacy Day

By Michelle Cohen, CIPP-US On January 28th, in an effort raise awareness of privacy and data privacy, the United States, Canada and 27 countries of the European Union celebrate International Data Privacy Day.  Many organizations use Data Privacy Day as an opportunity to educate their employees and stakeholders about privacy-related topics.  With the recent, high-profile data… Read More

Page 2 of 512345