Category: law
US DoJ guidance on responding to and reporting cyber incidents
When thinking about how to respond to cyber security incidents, you need to think about how your organization will engage with law enforcement – and…
Something about (Japanese) foxes and hen houses
Not strictly a security story, but interesting and alarming… Japanese authorities have decided that: It is permissible to make contributions to politicians using cryptocurrencies like…
Insiders on the outside
Homeland Security Magazine has a very interesting case study on an insider threat case involving DirecTV. In this case, the insider was a sort-of third…
Malicious data leaks and corporate liability – a tale of two countries
Databreaches.net had a link to a very interesting article about corporate liability for an employee’s malicious leaking of employee information. What was most striking to…
your passcode can take the fifth, but not your finger
Now, here is a head scratcher… a circuit court in Virginia has ruled that while law enforcement cannot force you to reveal the passcode for…
more details – microsoft’s deal with the nsa
This article from the Guardian claims that our friends in Redmond are cooperating with the NSA to give the spying agency access to all sorts…
NLRB continues push to regulate social media in non union companies
It seems that the National Labor Relations Board (NLRB) is continuing to extend its push into the regulation of social media in non unionized work…
more (and better) social media guidance from the nlrb
A while back, I wrote about how US organizations writing social media policies need to beware of the National Labor Relations Board’s requirements that these…
sec breach reporting requirements for publicly traded companies
If you are an information professional at a publicly traded company, I would strongly suggest reading a recent blog post by Richard Bejtlich about the…
is your company’s social media policy legal?
As the line between work and personal life becomes thinner and thinner, employee use of social media sites has become a more and more important…