Criminal masterminds are constantly re-envisioning their weapon of choice. International cyberattacks perpetuated through the use of leaked nation-state cyber tools, shaped many security discussions in 2018, but a new year consistently brings forth new challenges and lessons to learn. With the recent implementation of the European Union’s General Data Protection

What a difference a year makes.

In early 2018, the biggest concern for the consumer-facing online ecosystem was probably the then-impending launch of the GDPR. Today, GDPR compliance seems like the least of our worries. California’s “Consumer Privacy Act” takes effect in 10 months, and other states are considering similar

Privacy has been a hot topic for state legislatures in the first month of the year. Legislators in nine states have introduced draft bills that would impose broad obligations on businesses to provide consumers with transparency and control of personal data. If passed, these laws will impact nearly any type

Following in the footsteps of California, members of the Washington state legislature introduced the Washington Privacy Act (“WPA”) last month, which would regulate businesses that collect, use, and share the personal data of Washington residents. The WPA is modeled largely on the European Union’s General Data Protection Regulation (“GDPR”) rather

Originally published in HealthCareInfoSecurity.com

Avoiding Critical Security Risk Analysis Mistakes: Adam Greene Offers Insights on HIPAA Risk Assessments

Healthcare organizations and their business associates must be careful to avoid making mistakes with their HIPAA security risk analysis in case they ever undergo a compliance review or breach investigation by federal