Category Archives: Cyber

Subscribe to Cyber RSS Feed

China infiltrated the US with tiny chips!

Bloomberg News reported that “The attack by Chinese spies reached almost 30 U.S. companies, including Amazon and Apple, by compromising America’s technology supply chain…”. The report entitled “The Big Hack: How China Used a Tiny Chip to Infiltrate U.S. Companies” and included these details: In 2015, Amazon.com Inc. began quietly evaluating a startup called Elemental … Continue reading this entry

IoT Hackers plead guilty and get no jail time!

Darkreading.com reported that after substantial cooperation with the FBI that the three “…men charged with creating and managing the Mirai botnet have pleaded guilty to conspiracy to violate the Computer Fraud & Abuse Act and have been sentenced to a five-year period of probation and 2,500 hours of community service.” The September 19,2018 report entitled … Continue reading this entry

Silent Cyber Growing (lack of cyber insurance coverage)!

My friend Judy Greenwald reported for BusinessInsurance.com that “Silent cyber, cyber losses that affect insurance policies not specifically designed to cover cyber risk” was significant and that a “survey of close to 700 participants from more than 100 insurance companies found that in 2017, fewer than half of respondents estimated the silent cyber risk to … Continue reading this entry

Cyberattacks in Germany cost $50 billion!

Reuters reported about “Bitkom surveyed 503 top managers and security chiefs from across Germany’s manufacturing sector” and reported that “Two thirds of Germany’s manufacturers have been hit by cyber-crime attacks, costing industry in Europe’s largest economy some 43 billion euros ($50 billion),…”. The September 13, 2018 article entitled “Cyber attacks cost German industry almost $50 … Continue reading this entry

Cyberattack on BA customers compromises 380,000+ credit cards!

Reuters reported that “British Airways was forced to apologize on Friday after the credit card details of hundreds of thousands of its customers were stolen over a two-week period in the most serious attack on its website and app.”  The September 6, 2018 reported entitled “BA apologizes after 380,000 customers hit in cyber attack” included … Continue reading this entry

Cyberattacks directed at local governments may reduce credit ratings!

Reuters reported that a report from S& P Global Ratings indicates that credit “risks stemming from cyberattacks on U.S. cities, school districts and other municipal bond issuers are likely to grow as the public sector remains an easy target for hackers.”  The August 22, 2018 report entitled “Cyberattacks heighten credit risks in U.S. public sector: … Continue reading this entry

G20 countries skeptical about cryptocurrencies & Blockchain

Law.com reported that “crypto assets, which include cryptocurrencies, tokens, and ICOs, ‘raise issues with respect to consumer and investor protection, market integrity, tax evasion, money laundering and terrorist financing.’” The August 6, 2018 article entitled “G20 Countries’ Cryptocurrency Regulations Highlight Contradictory Blockchain Realities” included these comments: At the 2018 G20 international forum, finance ministers and … Continue reading this entry

WOW! Cyber theft of $1.1 billion of cryptocurrencies in the past 6 months!

Bankinfosecurity.com reported that to “steal cryptocurrency, attackers continue to leverage malware, phishing attacks and fake advertising campaigns.”  The June 12, 2018 article entitled “Cryptocurrency Theft: $1.1 Billion Stolen in Last 6 Months” included the comments from endpoint security firm Carbon Black “which analyzes cryptocurrency attacks that have been seen over the past six months”:   … Continue reading this entry

74 arrested for Spearphishing (cyber fraud aka Business Email Compromise - BEC) for theft of +$16m!

The US Department of Justice announced the arrest of 74 criminals, including 42 in the US, who made millions “targeting employees with access to company finances and businesses working with foreign suppliers and/or businesses that regularly perform wire transfer payments.” The June 11, 2018 Press Release entitled “74 Arrested in Coordinated International Enforcement Operation Targeting … Continue reading this entry

Wow, 30 day notice of cyber breach in new Colorado law trumps HIPAA!

Darkreading.com reported “Under the new law, if an individual’s personal information is part of a breach, he must be notified within 30 days after discovery — no exceptions.” The June 7, 2018 article entitled “New Colorado Breach Notification Rules Signed Into Law” included these comments about the new law signed by Gov. John Hickenlooper last … Continue reading this entry

Ransomware is #1 for Cyberinsurance claims!

HealthITSecurity.com reported that more “…than one-quarter of cyber insurance claims received by AIG last year were the result of ransomware attacks, the largest percentage of any cyberattack type, according to the insurance giant’s 2017 cyber insurance claim statistics.”  The June 4, 2018 report entitled “Ransomware Attacks Topped List of Cyber Insurance Claims” included these concerns: … Continue reading this entry

Hardly Shocking News - Cybercrime annual revenue $1.5 trillion (which would have the 13th highest GDP in the world)!

Darkreading.com reported “cybercriminals rake in at least $1.5 trillion every year — an amount equal to Russia’s gross domestic product [GDP].” The June 1, 2018 report entitled “Cybercrime Is Skyrocketing as the World Goes Digital” relied on the “research by Dr. Michael McGuire, senior lecturer in criminology at Surrey University and commissioned by security firm … Continue reading this entry

GDPR will likely lead to more cyber insurance claims!

My friend Judy Greenwald reported at BusinessInsurance.com that AIG expects now that GDPR is in place that more “Companies will be more inclined to report breaches, with the impact on cyber claims similar to that witnessed in the U.S. after state breach notification laws come into effect.”  Judy’s May 24, 2018 report entitled “Security claims … Continue reading this entry

South Carolina – First state to adopt a Cybersecurity Insurance Law!

The Charleston CEO announced that “Governor Henry McMaster signed the South Carolina Department of Insurance Data Security Bill into law today. South Carolina will be the first in the nation to pass a cybersecurity bill that requires insurers to establish a strong and aggressive cybersecurity program to protect their companies and their consumers from a … Continue reading this entry

GDPR phishing scam directed at Airbbnb customers!

Darkreading.com wrote about a “new phishing scam capitalizes on the upcoming General Data Protection Regulation (GDPR) to trick Airbnb customers into sharing personal and financial data,…”  The May 3, 2018 article entitled “Hackers Leverage GDPR to Target Airbnb Customers” included these comments: Targets receive an email designed to appear as though it’s from Airbnb, addressing … Continue reading this entry

Are ATMs safe? Probably not since Black Box ATM attacks are mounting which is costing banks millions!

Bankinfosecurity.com report that “Fraudsters are now gingerly testing the waters in central and Western Europe with attacks that drain cash machines of their funds, according to a trade group that studies criminal activity around ATMs.”  The April 18, 2018 report entitled “No Card Required: ‘Black Box’ ATM Attacks Move Into Europe” included these statistics: The … Continue reading this entry

71% of US federal agencies have reported Cybersecurity breaches!

Darkreading.com reported that “Federal agencies must protect sensitive data and both thwart bad guys hunting for citizens’ private data and nation-state hackers with their own agendas — in addition to grappling with perennial underfunding, understaffing, and antiquated systems that commercial enterprises tossed into the dumpster years ago. At the same time, they need to make … Continue reading this entry

IBM Cybersecurity teams with Willis Towers Watson

Willis Towers Watson “a leading global advisory, broking and solutions company that helps clients around the world turn risk into a path for growth. With roots dating to 1828, Willis Towers Watson has 40,000 employees serving more than 140 countries..”announced “an expansion of the company’s global advisory services aimed at addressing risk related to cybersecurity.” … Continue reading this entry

Don’t trust public Wifi is one of 5 ways to avoid fraud this tax season!

Darkreading.com reported very bad news about tax season fraud that “Sixty days into the 2017 tax season, that same preparer had 1.5 million user authentication attempts with more than 28,700 of them being either denied access or asked for more authentication.”  The April 6, 2018 reported entitled “Protect Yourself from Online Fraud This Tax Season” … Continue reading this entry

Cyber, Privacy & IT Law at the new Foley Gardere

I’m happy to announce that I will continue my Cyber, Privacy & IT trial and transactional law practice as a member of Foley Gardere’s Privacy, Security & Information Management Practice Group after the April 1st merger announcement “Foley & Lardner LLP and Gardere Wynne Sewell LLP Announce Combination” and Foley Gardere as a combined firm: … Continue reading this entry

No surprise - Cyber attacks directed at Cryptocurrency!

Darkreading.com reported that Web injects have led to “recent evidence of threat actors using Web injects to target cryptocurrency exchange Coinbase and Bitcoin wallet Blockchain.info.”  The March 22, 2018 article entitled “Criminals Using Web Injects to Steal Cryptocurrency” included this description of Web injects: Web injects is basically code for injecting malicious content into a … Continue reading this entry

Mark Zuckerberg requested to testify to Congress about Facebook/Cambridge Analytica Privacy

The Washington Post reported that there was an official request for Mark Zuckerberg to testify at the House Energy and Commerce Committee since the Committee believes the “CEO of Facebook, he is the right witness to provide answers to the American people. We look forward to working with Facebook and Mr. Zuckerberg to determine a … Continue reading this entry

Cyberintrusions by Russia put US power infrastructure in jeopardy!

The Washington Post reported that “Since at least March 2016… Russian hackers have ‘targeted U.S. government entities and multiple U.S. critical infrastructure sectors, including the energy, nuclear, commercial facilities, water, aviation, and critical manufacturing sectors.’”  The March 16, 2018 report entitled “Why Russian hackers aren’t poised to plunge the United States into darkness” includes this … Continue reading this entry

Yahoo’s ToS limitations of liabilities challenged in Cyberbreach of 3 billion users!

Reuters reported that Judge Lucy Kohl ruled that “the plaintiffs could try to show that liability limits in Yahoo’s terms of service were “unconscionable,” given the allegations that Yahoo knew its security was deficient but did little.” The March 12, 2018 article entitled “Data breach victims can sue Yahoo in the United States” included these … Continue reading this entry