AP reports what I’ve basically been telling everyone already. Prospects are good for a public shaming in the Equifax data breach, but it’s unlikely Congress will institute sweeping new regulations after hackers accessed the personal information of an estimated 143 million Americans. Since early this year, President Donald Trump and the Republican-led Congress have strived…
Category: Legislation
Senator Warren introduces Equifax bill; launches industry probe
Chris Sanders reports: U.S. Senator Elizabeth Warren said on Friday she has begun an investigation into Equifax’s (EFX.N) massive data breach and, along with 11 other Democratic senators, will introduce a bill to give consumers the ability to freeze their credit for free. Warren, who has built a reputation as a champion of consumers and…
CHINA: first 100 days of Cybersecurity Law sees active enforcement and more guidelines, but still uncertainties
Carolyn Bigg of DLA Piper writes: Almost 100 days have passed since the new PRC Cybersecurity Law came into force. While the enforcement environment is becoming clearer – and shows data protection and cyber security in China is a real risk to be taken seriously – most of the new guidelines published to try to…
Is The Hutchins Indictment Over Malware Unconstitutional?
Alex Berengaut of Covington & Burling analyzes some of the legal issues raised by the indictment of Marcus Hutchins (@malwaretechblog) for allegedly creating and conspiring to sell malware known as the Kronos banking trojan. He writes, in part: Since Hutchins’ indictment, commentators have questioned whether the creation and selling of malware—without actually using the malware—violates…
UK government sets out tougher guidelines to protect smart cars from hackers
Kylie MacLellan reports: The British government issued new guidelines on Sunday requiring manufacturers of internet-connected vehicles to put in place tougher cyber protections to ensure they are better shielded against hackers. The government said it was concerned that smart vehicles, which allow drivers to do things such as access maps and travel information, could be…
Department of Justice Releases Guidance for Vulnerability Disclosure Programs
Jennifer Martin, Ashden Fein and Weiss Nusraty write: Last week, the U.S. Department of Justice (“DOJ”) released a voluntary frameworkfor organizations to use in the development of a formal program to receive reports of network, software, and system vulnerabilities, and to disclose vulnerabilities identified in other organizations’ environments. This framework provides private entities a series…