Freeman Mathis & Gary, LLP’s Post

Good article about the new Tennessee law raising the bar on what is required to bring a data breach class action lawsuit. It's a good start but more is needed, and I hope legislatures will take more action like this to curb these lawsuits. #databreach #classaction #datasecurity #privacy

Never before has the SEC sued a company for scienter-based fraud involving cybersecurity, sued an individual (CISO) for their role in cybersecurity failures, or sued a company for alleged cybersecurity failures. To better understand the import of SolarWinds on SEC enforcement actions, and on private civil litigation, and for a recommended course of action, I invite you to read the following Law360 article co-authored by me, Aaron Goodman, Trial Lawyer and Michelle Leonard, entitled: Takeaways from SEC's Aggressive Cybersecurity Moves. https://lnkd.in/g8qZFF9r

The SEC's R.R. Donnelley settlement redefines "accounting controls" to encompass cybersecurity, paving the way for more actions against insufficient cyber practices, reports Matt Fleischer-Black of The Cybersecurity Law Report. Originating from a 2021 ransomware incident, this contentious decision has faced overreach accusations. The implications and practical advice are explored, featuring insights from Regulation & Securities Litigation expert Walker Newell. https://lnkd.in/d7wjt5qg #wsinthenews #CybersecurityLawReport #RRDonnelley

There are now class action lawsuits against National Public Data after the recent breach. To get a sense of what those suits are alleging, in one such filing, filed on August 19, lawyers argue that National Public Data “breached its duties by, among other things, failing to implement and maintain reasonable security procedures and practices to protect individuals’ PII [personally identifiable information] from unauthorized access and disclosure. It is interesting to see how quickly these actions have been taken. Something we can likely look forward to when our privacy act offers greater opportunity for direct action from a breach. https://lnkd.in/giEEmpzy

🏃♂️ NOW THAT WAS QUICK... 🏃♀️ 🚨 AT&T is now facing class action lawsuits in Texas, Montana, and New Jersey federal courts after disclosing a major data breach affecting "nearly all" of its wireless customers. This breach, which involved phone call and text message records from May 2022 to early 2023, has led to claims of negligence and failure to safeguard personal data. The lawsuits were filed almost immediately after the breach announcement, highlighting how swiftly legal action can follow such incidents. 🔑 Key points: ➡ Breach announced on July 12, TX lawsuit filed the same day; MT and NJ suits filed soon after. ➡ Plaintiffs seek damages, improved data security measures, and other remedies. ➡ Breach involved unauthorized access to call and text logs, though not the content of communications. 👇 NJ complaint is below 👇 #CyberSecurity #DataProtection #LegalRisks

DON'T FORCE US TO PUBLISH OUR DIRTY LAUNDRY!!! IT'LL SCREW WITH OUR STOCK PRICES!!! https://lnkd.in/dAndzuSV Feds brace for implementation of SEC cyber disclosure rules The U.S. government is readying to implement contentious new disclosure rules for digital attacks that could both create headaches for the private sector and law enforcement and shed invaluable light on the state of ransomware and online threats. On December 18, a rule passed earlier this year by the Securities and Exchange Commission will go into force that in most cases requires public companies to disclose when they have experienced cyber incidents no later than four business days after they determine the intrusion will have a material impact on operations. The obligation has prompted massive backlash from industry, which has argued that the requirement is too onerous for such a brief timeframe, and from Capitol Hill, where Republican lawmakers have introduced legislation that would repeal it altogether.

Your vote can go a long way! Please consider voting for The Beckage Firm: Tech, Data Security & Privacy Law Firm. It is an absolute honor to be mentioned and considered as “Cyber Law Firm of the Year.” We strive to always be the “Cardinal” for our clients and offer our guidance and support in all data privacy, incident response, and litigation matters. If you have already voted, thank you so much! #incidentresponse #cyber #technology #dataprivacy #litigation

Tomorrow we will be releasing the final instalment of our four-part video series on data breach incidents, hosted by Viola Trebicka, Co-chair of Quinn Emanuel’s Data Privacy and Security Practice, who will be joined by me and Jennifer English. This episode will provide a brief overview of state and federal laws that may be implicated after a breach, and specifically, highlight the steps a business or organization should take if personally identifiable information, or PII, is compromised during a data breach. Additionally, they will provide guide subsequent actions to fortify defenses in anticipation of the expected litigation surge that typically accompanies data breaches. #learnfromthebest #quinnemanuel #databreaches

While there is no "silver bullet" to combat cyber security however, with a multi-layered approach, the failure of one defense mechanism does not compromise the entire security infrastructure. Even if one layer is compromised, others stand guard to protect the organization’s digital assets.

Ugh 😩, these cyber attacks on our court systems, critical infrastructure, hospitals, schools, etc. are despicable. As a cybersecurity newbie I wonder if there’s a different approach to securing these type of systems one would take compared to a private company? Should laws against hacking these systems be stricter? Is there any way for the private sector to assist in securing these systems as it’s for the public good?