One of the cyber scenarios highlighted in the Cyber Law Toolkit describes the potential use of ransomware against municipal governments and healthcare providers. Given the pandemic and recession constraints in today’s world, this scenario and its potential implications are more relevant than ever and worthy of consideration by legal, business, and information technology professionals.
“The Coalition to Reduce Cyber Risk (CR2) is calling for a global approach to cybersecurity risk management underpinned by interoperable frameworks,” said Alexander Niejelow, President of the CR2 Board of Directors and Senior Vice President of Cybersecurity Coordination and Advocacy for Mastercard. “Our companies recognize that good cybersecurity risk management rests on a common security baseline of practices as well as a common taxonomy and lexicon. By recognizing this common core as a global standard, companies can more effectively reduce risk as we work across multiple economies and sectors.”
The following guidance, prepared and published by the Data Protection Commission (DPC) of Ireland, has been developed to aid data controllers and processors to ensure they meet their obligations with regard to the security of personal data they process.
The European Data Protection Supervisor (EDPS) is the European Union’s independent data protection authority, tasked with ensuring that the institutions and bodies of the EU respect data protection law. The following update shares an overview of the EDPS and presents the 2019 EDPS Annual Report.
The COVID-19 pandemic has led to a spike in businesses teleworking to communicate and share information over the internet. With this knowledge, malicious cyber actors are looking for ways to exploit telework software vulnerabilities in order to obtain sensitive information, eavesdrop on conference calls or virtual meetings, or conduct other malicious activities. While telework software provides individuals, businesses, and academic institutions with a mechanism to work remotely, users should consider the risks associated with them and apply cyber best practices to protect critical information, safeguard user privacy, and prevent eavesdropping.
NIST is releasing Draft NISTIR 8286, Integrating Cybersecurity and Enterprise Risk Management (ERM), for public comment. This report promotes greater understanding of the relationship between cybersecurity risk management and ERM, and the benefits of integrating those approaches.
According to Shyam Oza, Director of Product Management at Spanning, “The best way to protect your business from Ryuk is to avoid it. Avoidance comes when employees are educated in the matters of ransomware. Some employees do not receive the training, some do, and some know it all too well. Yet, human errors seem to be responsible for 90% of data breaches. Clearly, this tactic is not working.”
Epiq, a global leader in the legal services industry, today shared that it has taken its systems offline globally to contain the threat of a confirmed ransomware attack. The timeline for the online restoration of the systems remains unclear at the current time.
Governed under the auspices of OASIS, which offers projects a path to standardization and de jure approval for reference in international policy and procurement, the Open Cybersecurity Alliance (OCA) has announced the availability of the first open-source language for connecting cybersecurity tools through a common messaging framework, OpenDXL Ontology. Given the challenges of interoperability in the field of eDiscovery, data discovery and legal discovery professionals may benefit from this example of coordination, collaboration, and standardization.
Provided in this post is a compilation of informational article extracts that may be helpful for those seeking to learn more about cybersecurity and how it is approached from strategy and vision to interoperability and architecture by one of the most digitally-advanced and cybersecurity-savvy countries in the world, Estonia.
Chambers Litigation Support 2020 is a comprehensive guide to the leading professional...
According to FTC Chairman Joe Simons, “The new Guidelines reflect our...
Based on a compilation of research from analyst firms and industry...
Authored by industry expert Andrew Haslam, the eDisclosure Buyers Guide continues...
Not all secure remote review offerings are equal as the apparent...
Desktop as a Service (DaaS) providers are becoming important contributors to...
One of the key home (onsite) or away (remote) decisions that...
One of the key revision and decision areas that business, legal,...
From a macro look at past estimations of eDiscovery market size...
While the Compound Annual Growth Rate (CAGR) for worldwide eDiscovery software...
Since January 2016, 2,089 individual responses to eighteen quarterly eDiscovery Business...
First administered in December of 2018 and conducted four times during...
Based on the complexity of data and legal discovery, it is...
In the spring of 2020, 51.2% of respondents viewed budgetary constraints...
According to Janders Dean founder Justin North, "Now more than ever,...
From UnitedLex to Onna, ComplexDiscovery findings, data points, and tracking information...
From collection market size updates to cloud outsourcing guidelines, the June...
From review market sizing revisions to pandemeconomic pricing, the May 2020...
From business confidence to the boom of Zoom, the April 2020...
From business continuity considerations to cybersecurity attacks, the March 2020 edition...
