NIST Small Business Cybersecurity Act Passes in the House

On October 11, 2017, the House of Representatives passed bill H.R. 2105, the NIST Small Business Cybersecurity Act (NIST Act), which would require the US Department of Commerce’s National Institute of Standards and Technology (NIST) to provide cybersecurity guidance to US small businesses. Read about the latest NIST Small Business Cybersecurity Act (NIST Act) passed by […]

Single National Data Breach Notification Standard Proposed

A recently proposed bill calls for a single national data breach notification standard, which would replace the existing state notification laws and “clarify and strengthen” organizations’ reporting obligations. Read about the new bill proposed by Congressman Jim Langevi to create a national data breach notification standard, replacing the current 48 state notification laws in United States […]

The Key Thing in the IoT Cybersecurity Improvement Act

In reaction to the large-scale distributed denial of service (DDoS) attacks that made headlines last year, a bipartisan group of senators has introduced legislation establishing minimum security requirements for government-purchased Internet of Things (IoT) devices. Read Mike list the key features about the The Internet of Things Cybersecurity Improvement Act of 2017 on Signal.

Canada proposes EU-like regulations for mandatory data breach-reporting

Canada has proposed new regulations outlining how organizations, including financial firms, will report and record cyber-security breaches, assess potential harm, and notify affected individuals. Read about the proposed new European Union like data breach notification in Canada on Reuters.

Healey backs bill to guard against data breaches

In the wake of the massive Equifax credit data breach that affected almost half of the state’s residents, Attorney General Maura Healey is backing legislation to help protect consumers. Read about the new bill introduced by state Sen. Barbara L’Italien, D-Andover, and state Rep. Jennifer Benson, D-Lunenburg that would give United States consumers five years […]

Proposed federal data breach reporting regs good for business: Lawyer

Organizations following the federal privacy law would have to keep a record of every breach of security safeguards for no more than 24 months after the day the breach has occurred, according to new proposed regulations to Canadian law requiring firms to report breaches to customers and the privacy commissioner. Read privacy lawyer Eloise Gratton of […]

Can the U.S. Senate secure the Internet of Things?

Read Gary Eastwood’s article about whether the United States Senate can secure Internet of Things devices on Network World : As a free and open internet continues to come under assault by the FCC’s proposal to effectively end net neutrality, investors, programmers, and internet users of all stripes have vociferously voiced their support of the […]

How banks are coping with New York’s cybersecurity rules

Read Penny Crosman’s article about how banks are copying with the newly implemented New York’s cyber security rules on American Banker : Theodore Tomita has plenty to say about the New York State Department of Financial Services’ new cybersecurity rule, which began to take effect last week, and little of it is complimentary. Read her full […]

Massachusetts Lawmakers Turn Attention to Cybersecurity

In the wake of growing concerns about data privacy and cyber threats, Massachusetts lawmakers are increasingly focused on evaluating and improving the state’s cybersecurity policies and information technology infrastructure. Read about the initiative by Massachusetts lawmakers to amend state cyber security policies on National Law Review.

Taking Stock of Trump’s Cybersecurity Executive Order So Far

Read Lila Hay Newman take stock of President Trump’s cyber security Executive Order on Wired : By the time President Trump signed his Cybersecurity Executive Order on May 11, it had taken on a mythic air. The administration had produced a series of drafts soon after the inauguration that leaked, circulated, provoked criticism, and motivated […]