Proposed State Laws For Breach Notification Could Increase Incident Response Costs
Two proposed state laws could impact incident response and costs: New Jersey Assembly Bill 1852 and New York Senate Bill 3078.
June 2, 2026
Two proposed state laws could impact incident response and costs: New Jersey Assembly Bill 1852 and New York Senate Bill 3078.
KRCR reports: California Attorney General Rob Bonta announced a lawsuit Thursday against genetic testing company 23andMe, now known as Chrome
Martin A. Steinberg, J.D. discusses a case in the Northern District of Illinois: The provider must face negligence and implied-contract
Consumer Affairs reports: Krispy Kreme customers affected by a 2024 data breach may now be eligible for compensation under a
The Record reports: Two men are facing years in prison for providing services to a tech-support fraud scheme in India
Miscellaneous News
The New Humanitarian reports: A cyber-attack targeting the World Food Programme has exposed sensitive personal information belonging to some 600,000
DysruptionHub reports: A cybersecurity event has disrupted calibration systems at Des Moines, Iowa-based Intoxalock since March 14, leaving some court-ordered
In 2023, Singing River Health System in Mississippi was hit by the Rhysida gang. In October 2023, Singing River Health System and its wholly owned subsidiary, Singing River Gulfport notified HHS that 895,204 patients had been affected. In response to the incident, they reportedly implemented a series of improved technical safeguards. Whatever they did was not enough to prevent an attack in 2025 by the Anubis gang. This one affected 53,888 patients. HealthExec reports: Last month, Singing River Health System
HealthcareInfoSecurity reports that Conduent has updated its already-large data breach numbers: The victim tally in back-office support services firm Conduent Business Services‘ 2024 hack has more than doubled to over 62.2 million people. The revised, eye-popping total Conduent reported to federal regulators apparently in recent days brings the breach closer to tying the nearly 79 million people affected by a 2015 hack on health insurer Anthem Inc., which for nearly a decade held the infamous distinction as the largest health data
Financial Times reports: Anthropic is helping the US National Security Agency deploy its powerful Mythos AI model for offensive cyber operations, embedding engineers inside the agency despite an ongoing legal battle with the Pentagon. The San Francisco-based company had installed about half a dozen staff within the NSA as so-called forward-deployed engineers to guide the use of the technology and customise models for specific applications, two people familiar with the arrangement said. It remains unclear whether Anthropic’s engineers are
404 Media reports: Hackers say that they used Meta’s AI support chatbot to break into a host of high-profile Instagram profiles by asking the support bot to change the email address associated with the target account. The claims coincide with a series of high-profile Instagram account takeovers, including the Barack Obama White House account, the Chief Master Sergeant of Space Force’s account, and Sephora’s account. The news shows the extreme risk associated with offloading support or critical functions to an AI chatbot.
KRCR reports: California Attorney General Rob Bonta announced a lawsuit Thursday against genetic testing company 23andMe, now known as Chrome Holding Company, accusing the company of failing to protect millions of users’ sensitive genetic information during a massive 2023 data breach. According to the lawsuit, the breach exposed the personal information of nearly 7 million users nationwide, including more than 855,000 Californians. State investigators say hackers were able to remain inside the company’s systems undetected for about five months. The complaint
In 2023, Singing River Health System in Mississippi was hit by the Rhysida gang. In October 2023, Singing River Health
Fierce Healthcare reports that a legislator is seeking answers about the recently disclosed breach affecting 1.8 million patients: Senate Health,
The New Humanitarian reports: A cyber-attack targeting the World Food Programme has exposed sensitive personal information belonging to some 600,000
WJAR reports: A data breach four months ago has Warwick-based Beacon Mutual Insurance notifying people whose personal information was compromised
Does it matter whether President Trump calls the situation with Iran a “war” or an “excursion” or something else if
HealthcareInfoSecurity reports that Conduent has updated its already-large data breach numbers: The victim tally in back-office support services firm Conduent
In 2023, Singing River Health System in Mississippi was hit by the Rhysida gang. In October 2023, Singing River Health System and its wholly owned subsidiary, Singing River Gulfport notified HHS that 895,204 patients had been affected. In response to the incident, they reportedly implemented a series of improved technical safeguards. Whatever they did was not enough to prevent an attack in 2025 by the Anubis gang. This one affected 53,888 patients. HealthExec reports: Last month, Singing River Health System
HealthcareInfoSecurity reports that Conduent has updated its already-large data breach numbers: The victim tally in back-office support services firm Conduent Business Services‘ 2024 hack has more than doubled to over 62.2 million people. The revised, eye-popping total Conduent reported to federal regulators apparently in recent days brings the breach closer to tying the nearly 79 million people affected by a 2015 hack on health insurer Anthem Inc., which for nearly a decade held the infamous distinction as the largest health data
Financial Times reports: Anthropic is helping the US National Security Agency deploy its powerful Mythos AI model for offensive cyber operations, embedding engineers inside the agency despite an ongoing legal battle with the Pentagon. The San Francisco-based company had installed about half a dozen staff within the NSA as so-called forward-deployed engineers to guide the use of the technology and customise models for specific applications, two people familiar with the arrangement said. It remains unclear whether Anthropic’s engineers are
404 Media reports: Hackers say that they used Meta’s AI support chatbot to break into a host of high-profile Instagram profiles by asking the support bot to change the email address associated with the target account. The claims coincide with a series of high-profile Instagram account takeovers, including the Barack Obama White House account, the Chief Master Sergeant of Space Force’s account, and Sephora’s account. The news shows the extreme risk associated with offloading support or critical functions to an AI chatbot.
Two proposed state laws could impact incident response and costs: New Jersey Assembly Bill 1852 and New York Senate Bill 3078.
KRCR reports: California Attorney General Rob Bonta announced a lawsuit Thursday against genetic testing company 23andMe, now known as Chrome
Martin A. Steinberg, J.D. discusses a case in the Northern District of Illinois: The provider must face negligence and implied-contract
Consumer Affairs reports: Krispy Kreme customers affected by a 2024 data breach may now be eligible for compensation under a
The Record reports: Two men are facing years in prison for providing services to a tech-support fraud scheme in India
Miscellaneous News
The New Humanitarian reports: A cyber-attack targeting the World Food Programme has exposed sensitive personal information belonging to some 600,000
DysruptionHub reports: A cybersecurity event has disrupted calibration systems at Des Moines, Iowa-based Intoxalock since March 14, leaving some court-ordered
In 2023, Singing River Health System in Mississippi was hit by the Rhysida gang. In October 2023, Singing River Health
Fierce Healthcare reports that a legislator is seeking answers about the recently disclosed breach affecting 1.8 million patients: Senate Health,
The New Humanitarian reports: A cyber-attack targeting the World Food Programme has exposed sensitive personal information belonging to some 600,000
WJAR reports: A data breach four months ago has Warwick-based Beacon Mutual Insurance notifying people whose personal information was compromised
Does it matter whether President Trump calls the situation with Iran a “war” or an “excursion” or something else if
HealthcareInfoSecurity reports that Conduent has updated its already-large data breach numbers: The victim tally in back-office support services firm Conduent