Recently, Home Depot moved to dismiss one of the more than a dozen class action lawsuits filed against it following a revelation last month that its payment data system was breached. Home Depot’s motion illustrates...

California amended its data breach notification law at the end of September, placing new requirements on companies offering identity theft prevention and mitigation services to those affected by data breaches. Additionally, the amendment prohibits the...

Two big names in the technology software and equipment industries won at least short-term victories last week in the Northern District of California. See Halpain v. Adobe Systems, Inc., 5:13-cv-05226 (N.D. Calif. 2014); Doe I...

Last week, Hold Security, a Milwaukee information security firm, announced that a Russian cyber gang, dubbed “CyberVor”, nabbed over 4.5 billion user records. Of these records, Hold Security estimates that 1.2 billion usernames and passwords,...

California healthcare providers can breathe a sigh of relief. Recently, the California Court of Appeals held that plaintiffs suing under the Confidentiality of Medical Information Act (“CMIA”) may not recover statutory damages from a mere...

If your company accepts payment cards (credit, debit or prepaid) or transmits or stores cardholder data, we understand that security concerns may keep you up at night. Recent data breaches at Target, Neiman Marcus, and...

In a decision representative of a growing trend, an Illinois trial court dismissed class claims for lack of standing following an alleged data breach.

Today, the Attorney General ended speculation about whether the United States would ever criminally charge members of the Chinese Army by announcing that a grand jury in the Western District of Pennsylvania had issued an...

On Tuesday, FTC Chairwoman Ramirez testified before the Senate Committee on Homeland Security and Government Affairs, explaining the FTC’s view that continued data breaches underscore the need for national data breach and security legislation.

Data breaches are continuing to make headlines. Nearly every state has a data breach notification statute, and many of these statutes require companies to notify affected individuals without unreasonable delay. Previously, little guidance existed on...