Litigation and legal developments concerning data breaches.
DataBreaches.net reports: He’s just a frail-looking teenager, but he sent threatening emails to get his victims to pay his extortion demands. Today, 19 year-old Assumption College student Matthew Lane waived indictment and pleaded guilty in a Worcester courtroom to hacking an unnamed telecom company and an unnamed edtech vendor, widely known to be PowerSchool. As per the plea […]
From Jackson Lewis’s Workplace Privacy, Data Management & Security Report: The Oklahoma State Legislature recently enacted Senate Bill 626, amending its Security Breach Notification Act, effective January 1, 2026, to address gaps in the state’s current cybersecurity framework (the “Amendment”). … In the new year, entities required to provide notice to impacted individuals under the […]
Vodafone GmbH has been hit with a massive fine by the German data protection agency for privacy and data security violations. BleepingComputer reports: The German data protection authority (BfDI) has fined Vodafone GmbH, the telecommunications company’s German subsidiary, €45 million ($51.4 million) for privacy and security violations. “Due to malicious employees in partner agencies who […]
A press release from the U.S. Attorney’s Office, Eastern District of New York:
If a firm falls for a business email compromise or fraud and wires payment to a fraudster, it will still have to pay the correct party. From the Proskauer law firm, a post about a recent case: A case of first impression decided by the California Court of Appeal, Fourth Appellate District demonstrates the high […]
The Hunton Andrews Kurth law firm has posted a summary of new law in North Dakota that affects financial corporations: On April 11, 2025, the North Dakota governor signed H.B. 1127 (the “Act”), which establishes new data security measures and breach notification obligations for financial corporations. Covered entities include those that are regulated by the North Dakota […]
Hogan Lovells has released a new guide exploring data protection and security developments in the APAC area. The guide reviews: Download the Asia-Pacific Data, Privacy, and Cybersecurity Guide 2025.
James Sherer of BakerLaw recently sent out an interesting email update on state laws, which we are passing along to our readers: If you would like to receive the firm’s CLE/weekend update emails, reach out to jsherer@bakerlaw.com.
The Record reports: Australia became on Friday the first country in the world to require victims of ransomware attacks to declare to the government any extortion payments made on their behalf to cybercriminals. The law, initially proposed last year, only applies to organizations with an annual turnover greater than AUS $3 million ($1.93 million) alongside a smaller […]
The Register reports: A Seattle cancer facility has agreed to fork out around $52.5 million as part of a class action settlement linked to a Thanksgiving 2023 cyberattack where criminals directly threatened cancer patients with swat attacks. The Fred Hutchinson Cancer Center (Fred Hutch) disclosed its November 2023 attack a month later, after it confirmed […]
