Advertisement · 728 × 90

Posts by Data Privacy & Security Advisors

Preview
The US NSA is using Anthropic’s Claude Mythos despite supply chain risk Axios reports the National Security Agency uses Anthropic Mythos model despite Department of Defense concerns, blurring AI risk vs defense lines. The reported use of Anthropic’s Mythos model by the U.S. National Security Agency is a reminder that the line between AI as a defensive tool and AI as a security risk is getting harder […]
4 hours ago 0 0 0 0
Preview
$290 Million Kelp DAO Crypto Heist Blamed on North Korea The hackers targeted LayerZero’s DVN, compromising certain RPCs and DDoSing others to trigger failover to the poisoned infrastructure.   The post $290 Million Kelp DAO Crypto Heist Blamed on North Korea appeared first on SecurityWeek.
4 hours ago 0 0 0 0
Preview
U.S. CISA adds Cisco Catalyst, Kentico Xperience, PaperCut NG/MF, Synacor ZCS, Quest KACE SMA, and JetBrains TeamCity flaws to its Known Exploited Vulnerabilities catalog U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Cisco Catalyst, Kentico Xperience, PaperCut NG/MF, Synacor ZCS, Quest KACE SMA, and JetBrains TeamCity flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Cisco Catalyst, Kentico Xperience, PaperCut NG/MF, Synacor ZCS, Quest KACE SMA, and JetBrains TeamCity flaws to its Known […]
5 hours ago 0 0 0 0
Preview
Bluesky hit by 24-hour DDoS attack as pro-Iran group claims responsibility Bluesky suffered a 24-hour DDoS attack that caused outages. A pro-Iran hacker group claimed responsibility for the disruption. Bluesky experienced a sophisticated DDoS attack that disrupted its services for about 24 hours, starting on April 15. Bluesky is a decentralized, open-source microblogging social media platform similar to X (formerly Twitter). It allows users to post […]
6 hours ago 1 1 0 0
Preview
Legal Tech Co. Sued Over Immigration Software Breach Legal professional services software firm 8am LLC, owner of MyCase and formerly known as AffiniPay, has been sued in Texas federal court over a data breach exposing sensitive data of more than 100,000 people in the DocketWise immigration case management platform.
18 hours ago 0 0 0 0
Preview
Proposed State AI Law Update: April 20, 2026 Nebraska (chatbot) and Maine (health) enacted laws last week, while more than a dozen bills advanced in other states.... By: Troutman Pepper Locke
18 hours ago 0 0 0 0
Preview
SERIOUS STUFF: Court Reminds TCPA Lawyers They Could Be Disbarred or Jailed for Submitting False Evidence– And Everyone Should Take Note Its getting a little chippy out there in TCPAWorld lately. I’ve been noticing an increasing effort by TCPA litigants to seek sanctions and call each other liars. At issue, ultimately, are the veracity of leads– webform submissions purporting to demonstrate consent.... By: Troutman Amin LLP
18 hours ago 0 0 0 0
Preview
Serial-to-IP Devices Hide Thousands of Old and New Bugs The OT devices that translate machine talk into Internet-speak are riddled with vulnerabilities and more frequently targeted for attacks, researchers say.
18 hours ago 0 0 0 0
Advertisement
Preview
Insurer Lessons From 1st Wave Of GenAI Coverage Rulings Several pending cases target the issue of whether generative AI may appropriately replace human professional decision-making, and though each case is still in discovery, the decisions thus far provide insurers with guidance on how courts may view these claims, say attorneys at Simpson Thacher.
19 hours ago 0 0 0 0
Preview
FTC Seeks Comment by May 18 on Food Delivery Pricing and Fees On April 14, 2026, the Federal Trade Commission (“FTC” or “Commission”) announced an Advanced Notice of Proposed Rulemaking (“ANPRM”) seeking public comment on whether a new rule is needed to address fee practices by online food and grocery delivery platforms that may obscure total pricing or impede consumers’ ability to compare prices across services.  Comments... Continue Reading…
19 hours ago 0 0 0 0
Preview
Alabama Enacts Comprehensive Privacy Law On April 17, 2026, the Governor of Alabama signed HB 351, Alabama Personal Data Protection Act (ALDPA), into law.  The law resembles Connecticut’s data privacy statute, but omits certain requirements, such as a data protection impact assessment.  Alabama follows  Oklahoma as the second state to enact a comprehensive privacy law this year.  The law will... Continue Reading…
19 hours ago 0 0 0 0
Preview
Alabama Joins the Privacy Club: What In-House Counsel Need to Know Alabama enacted a comprehensive consumer privacy law—the Alabama Personal Data Protection Act (HB 351)—that will require incremental, not radical, change for companies with existing privacy-compliance programs.... By: Shook, Hardy & Bacon L.L.P.
19 hours ago 0 0 0 0
Preview
Taming Modern Data Challenges: The Importance of Information Governance Organizations face an unprecedented challenge: the sheer volume, variety, and velocity of data. From collaboration tools and mobile devices to cloud-based enterprise systems and generative AI outputs,... By: Cimplifi
19 hours ago 0 0 0 0
Preview
Cybersecurity for Lawyers: Why “Comprehensive Cybersecurity” Is No Longer Optional Law firms—solo and large alike—are prime targets for ransomware, phishing, and data exfiltration attacks. The reason is simple: lawyers warehouse high-value information—financial records, privileged communications, trade secrets, and litigation strategy—often with inconsistent safeguards.... By: Law Office of Jason Ostendorf
19 hours ago 0 0 0 0
Preview
FTC Oversight Hearing: What Ferguson’s Testimony Means for AI, Pricing, and Privacy Compliance On April 15, 2026, the Senate Commerce Committee held an oversight hearing with FTC Chairman Andrew Ferguson and Commissioner Mark Meador.... By: Kelley Drye & Warren LLP
19 hours ago 0 0 0 0
Advertisement
Preview
Leash the Risk: What veterinary clinics need to know about data protection laws Who let the data out? It’s 6:45 a.m. The overhead fluorescent lights are humming, and the scent of disinfectant is in the air. The boarded pets stir as they begin to wake up. They will want breakfast soon. It’s the start of another busy day at the vet clinic.... By: Constangy, Brooks, Smith & Prophete, LLP
19 hours ago 0 0 0 0
Preview
Scattered Spider member Tyler Buchanan pleads guilty to major crypto theft Tyler Buchanan, linked to Scattered Spider, pleaded guilty in the US to hacking companies and stealing millions in cryptocurrency. Tyler Buchanan, a 24-year-old from Scotland linked to the Scattered Spider group, admitted in a US court that he hacked dozens of companies, committed fraud, and stole millions in cryptocurrency. Spanish police arrested the British national […]
19 hours ago 0 0 0 0
Preview
The Role Of Operational Data In Tech Platform Liability Suits As litigation becomes a de facto substitute for the regulation of major technology platforms, with plaintiffs advancing claims under product liability, public nuisance and consumer protection laws, among others, courts are evaluating how platform systems operate in practice based on large-scale operational data, say attorneys at Brattle.
20 hours ago 0 0 0 0
Preview
Your Website’s Pixels May Be Wiretaps: 10 Questions Every Business Should Ask About CIPA The plaintiffs’ bar has been ramping up lawsuits under the California Invasion of Privacy Act (CIPA) and federal and state wiretapping statutes for years, and the wave is not receding. Tens of thousands of claims have been filed since 2022, with CIPA wiretapping continuing to accelerate in recent months. Meanwhile, plaintiffs are branching out beyond California to Florida, Pennsylvania, and Illinois, and increasingly relying on the federal Electronic Communications Privacy Act (ECPA) to reach... By: Fox Rothschild LLP
20 hours ago 0 0 0 0
Preview
State Privacy Enforcers Discuss Collaboration and Enforcement Priorities: Key Takeaways From IAPP Global Summit 2026 At the 2026 IAPP Global Summit in Washington, D.C., a panel titled “State Collaboration on Privacy” brought together state privacy enforcers to discuss how they are working together and what businesses should expect.... By: Perkins Coie
21 hours ago 0 0 0 0
Preview
Where Privacy Is Headed Next: Key Takeaways From the 2026 IAPP Global Privacy Summit The 2026 International Association of Privacy Professionals (IAPP) Global Privacy Summit brought thousands of privacy and data governance professionals, including industry leaders, privacy scholars, and representatives from 22 data protection authorities around the world, to Washington, D.C., for discussions about technological developments, regulatory changes, and business developments shaping the privacy landscape.... By: Perkins Coie
21 hours ago 0 0 0 0
Preview
Proposed State Privacy Law Update: April 20, 2026 Alabama became the twenty-first state to enact a broader consumer data privacy law, Kentucky and Virginia finalized amendments to their consumer data privacy laws, and Nebraska amended its Age-Appropriate Design Code Act.... By: Troutman Pepper Locke
21 hours ago 0 0 0 0
Preview
The California DROP Mechanism—$1.5 Billion in Exposure and the Clock Is Ticking: Key Takeaways from 2026 IAPP Global Summit $1.5 billion. That number got the room’s attention at the 2026 IAPP Global Summit: $1.5 billion is the theoretical penalty exposure for a single data broker that misses just one deletion cycle under California’s new Delete Request and Opt-Out Platform (DROP), a first-of-its-kind centralized deletion mechanism that goes live on August 1, 2026. And, who’s considered a data broker may surprise you.... By: Perkins Coie
21 hours ago 0 0 0 0
Preview
[Event] Healthcare Privacy Compliance Academy - June 22nd - 25th, Denver, CO HCCA's Healthcare Privacy Compliance Academy is a three-and-a-half-day interactive education program with a focus on the vast body of privacy laws and regulations in place to help you protect PHI and other critical data. Our faculty of experienced practitioners provides guidance and insights on a variety of subjects, including ongoing challenges, new developments, policy changes, and regulatory updates.... By: Health Care Compliance Association (HCCA)
21 hours ago 0 0 0 0
Preview
Serial-to-IP Converter Flaws Expose OT and Healthcare Systems to Hacking Forescout researchers discovered 20 new vulnerabilities in Lantronix and Silex products and described theoretical attack scenarios. The post Serial-to-IP Converter Flaws Expose OT and Healthcare Systems to Hacking appeared first on SecurityWeek.
22 hours ago 0 0 0 0
Advertisement
Preview
The State AG Report – 04.16.2026 Here are curated AG and federal regulatory news stories highlighting key areas in which state and federal regulators’ decisions are having an impact across the US: • Florida AG Probes OpenAI Over Safety and Security Concerns - • Multistate Coalition Calls for Caps on Deceptive Rental Fees - • Iowa AG Adds Claims to TikTok Lawsuit - • FTC Announces Sweep Targeting Misleading “Made in the USA” Labels - • Texas AG Actively Investigating Lululemon for PFAS in Apparel - • Montana AG Driven to... By: Cozen O'Connor
23 hours ago 0 0 0 0
Preview
Congress Again Approaches Deadline for Extending FISA 702 Authorities, Creating Uncertainty for Communications Providers For the second time in three years, Section 702 of the Foreign Intelligence Surveillance Act (FISA) is poised to expire. Section 702 authorizes U.S. intelligence agencies to obtain the communications of non-U.S. persons who are reasonably believed to be outside the U.S. to obtain “foreign intelligence information.” 50 U.S.C. §1881a(i). The foreign intelligence information currently authorized by the Foreign Intelligence Surveillance Court (FISC) for collection is focused on specific categories:... By: Wiley Rein LLP
23 hours ago 0 0 0 0
Preview
WhatsApp Leaks User Metadata to Attackers Strangers can infer limited info about you without knowing or messaging you, which could theoretically aid certain kinds of malicious activity.
23 hours ago 0 0 0 0
Preview
Britain’s Financial Regulators Raise the Bar on Cyber Reporting and Resilience Cyber risk has shifted from a technical issue to a systemic one and Britain’s financial regulators are making that reality unmistakably clear. On March 18, 2026, the Financial Conduct Authority (FCA), Prudential Regulation Authority (PRA), and Bank of England announced a new, unified cyber and operational resilience framework that strengthens the requirements on how firms […] The post Britain’s Financial Regulators Raise the Bar on Cyber Reporting and Resilience appeared first on Alston & Bird Privacy, Cyber & Data Strategy Blog.
1 day ago 0 0 0 0
Preview
CVE-2023-33538 under attack for a year, but exploitation still unsuccessful Hackers have targeted CVE-2023-33538 flaw in old TP-Link routers for a year, but no successful exploitation has been seen so far. Hackers have been trying for over a year to exploit a serious flaw, tracked as CVE-2023-33538 (CVSS score of 8.8), in outdated TP-Link routers, but so far without success. The vulnerability is a command […]
1 day ago 0 0 0 0