California businesses have new cybersecurity obligations
Comply or risk class-action litigation? IAPP explains: Last year, the California Privacy Protection Agency adopted a major new rule requiring certain businesses
April 16, 2026
Comply or risk class-action litigation? IAPP explains: Last year, the California Privacy Protection Agency adopted a major new rule requiring certain businesses
The Daily Hodl reports: A bank in the US is settling with customers affected by a cybersecurity breach that exposed
Axios reports: Read more at Axios.
WPIX reports: A luxury fashion company that sells clothing, accessories and cosmetics has agreed to a class action settlement to resolve claims
The Wall Street Journal reports: President Trump signed an executive order Friday directing diplomatic, law enforcement and national security agencies
Miscellaneous News
DysruptionHub reports: A cybersecurity event has disrupted calibration systems at Des Moines, Iowa-based Intoxalock since March 14, leaving some court-ordered
The International Business Times reports: Discord is preparing to enforce a global age verification system from early March that will
Comply or risk class-action litigation? IAPP explains: Last year, the California Privacy Protection Agency adopted a major new rule requiring certain businesses to conduct an annual cybersecurity audit. The rule went into effect 1 Jan. 2026. This pioneering requirement, the first of its kind among state data privacy laws of general applicability, may entail substantial compliance efforts for affected companies to identify and correct cybersecurity shortcomings. While compliance concerns may generate new anxiety, the audit requirement’s impact on data breach litigation could
The Crypto Citizens Network reports on a somewhat different breach tactic where threat actors made a video of internal systems and threaten to leak the videos if their payment demands are not met. Kraken is standing firm that it won’t pay: In crypto, breaches usually start with code. This one didn’t. Kraken, one of the largest U.S.-based exchanges, is dealing with a different kind of threat—an extortion attempt built on insider access, not a traditional hack. On April 13, Chief Security
Does it matter whether President Trump calls the situation with Iran a “war” or an “excursion” or something else if your company is hit by a cyberattack that may be in retaliation? The Wall Street Journal reports: From Europe to the Middle East, geopolitical conflicts have companies rereading the fine print on insurance policies that deny coverage for wartime cyberattacks. Act-of-war exclusions—a common provision in homeowners, life and travel insurance—are largely untested in the cyber market, where the line between
A cybersecurity incident knocked out key systems, canceling chemotherapy appointments, closing pharmacies and pushing Brockton Hospital to divert ambulances while staff switch to paper records MassLive reports: Brockton Hospital is diverting ambulances and canceling some services as it responds to a cybersecurity incident that began impacting its information systems on Monday. Chemotherapy infusion services for cancer patients scheduled for Tuesday, April 7, have been canceled, the hospital’s operator, Signature Healthcare, said in a public alert. Patients are advised to call the
GDN Online reports: Cyber-attacks targeting Bahrain and its Gulf neighbours have skyrocketed eight-fold this month in the wake of the joint US-Israeli military operation against Iran, security experts have warned. Hacktivists aligned with Tehran have dramatically ramped up Distributed Denial of Service (DDoS) strikes across the Middle East, capitalising on the chaos of the widening regional conflict. Data released by cybersecurity firm StormWall showed that between March 1 and 20, the volume of these malicious traffic attacks surged by a
On April 8, The Record reported: The Los Angeles Police Department on Tuesday announced that hackers gained access to a
The Crypto Citizens Network reports on a somewhat different breach tactic where threat actors made a video of internal systems
ABC (Australia) reports: Some Booking.com customers are being warned their personal information may have been accessed by unauthorised third parties,
Does it matter whether President Trump calls the situation with Iran a “war” or an “excursion” or something else if
From the Hunton Insurance Recovery Blog: In the rarely litigated space of cyber insurance, the Northern District of Texas issued
DysruptionHub reports: A cybersecurity event has disrupted calibration systems at Des Moines, Iowa-based Intoxalock since March 14, leaving some court-ordered
Comply or risk class-action litigation? IAPP explains: Last year, the California Privacy Protection Agency adopted a major new rule requiring certain businesses to conduct an annual cybersecurity audit. The rule went into effect 1 Jan. 2026. This pioneering requirement, the first of its kind among state data privacy laws of general applicability, may entail substantial compliance efforts for affected companies to identify and correct cybersecurity shortcomings. While compliance concerns may generate new anxiety, the audit requirement’s impact on data breach litigation could
The Crypto Citizens Network reports on a somewhat different breach tactic where threat actors made a video of internal systems and threaten to leak the videos if their payment demands are not met. Kraken is standing firm that it won’t pay: In crypto, breaches usually start with code. This one didn’t. Kraken, one of the largest U.S.-based exchanges, is dealing with a different kind of threat—an extortion attempt built on insider access, not a traditional hack. On April 13, Chief Security
Does it matter whether President Trump calls the situation with Iran a “war” or an “excursion” or something else if your company is hit by a cyberattack that may be in retaliation? The Wall Street Journal reports: From Europe to the Middle East, geopolitical conflicts have companies rereading the fine print on insurance policies that deny coverage for wartime cyberattacks. Act-of-war exclusions—a common provision in homeowners, life and travel insurance—are largely untested in the cyber market, where the line between
A cybersecurity incident knocked out key systems, canceling chemotherapy appointments, closing pharmacies and pushing Brockton Hospital to divert ambulances while staff switch to paper records MassLive reports: Brockton Hospital is diverting ambulances and canceling some services as it responds to a cybersecurity incident that began impacting its information systems on Monday. Chemotherapy infusion services for cancer patients scheduled for Tuesday, April 7, have been canceled, the hospital’s operator, Signature Healthcare, said in a public alert. Patients are advised to call the
Comply or risk class-action litigation? IAPP explains: Last year, the California Privacy Protection Agency adopted a major new rule requiring certain businesses
The Daily Hodl reports: A bank in the US is settling with customers affected by a cybersecurity breach that exposed
Axios reports: Read more at Axios.
WPIX reports: A luxury fashion company that sells clothing, accessories and cosmetics has agreed to a class action settlement to resolve claims
The Wall Street Journal reports: President Trump signed an executive order Friday directing diplomatic, law enforcement and national security agencies
Miscellaneous News
DysruptionHub reports: A cybersecurity event has disrupted calibration systems at Des Moines, Iowa-based Intoxalock since March 14, leaving some court-ordered
The International Business Times reports: Discord is preparing to enforce a global age verification system from early March that will
On April 8, The Record reported: The Los Angeles Police Department on Tuesday announced that hackers gained access to a
The Crypto Citizens Network reports on a somewhat different breach tactic where threat actors made a video of internal systems
ABC (Australia) reports: Some Booking.com customers are being warned their personal information may have been accessed by unauthorised third parties,
Does it matter whether President Trump calls the situation with Iran a “war” or an “excursion” or something else if
From the Hunton Insurance Recovery Blog: In the rarely litigated space of cyber insurance, the Northern District of Texas issued
DysruptionHub reports: A cybersecurity event has disrupted calibration systems at Des Moines, Iowa-based Intoxalock since March 14, leaving some court-ordered