On Aug. 11, 2022, the U.S. Consumer Financial Protection Bureau issued guidance indicating that financial institutions and service providers that fail to adopt sufficient data security measures to protect consumer financial data may violate the Consumer Financial Protection Act provision prohibiting unfair acts and practices.
Kevin M. Scott
Kevin Scott counsels small and large entities, including merchants, medical providers, financial institutions, and educational institutions on the identification, evaluation, and management of first- and third-party data privacy and cybersecurity risks. Kevin advises on data privacy, cybersecurity breach response, and payment card industry standards and investigations. He has handled hundreds of breaches, often reducing public and regulatory scrutiny and protecting clients’ reputations. Kevin’s practice also includes advising clients on compliance with state, federal, and international laws and regulations.
Kaseya Ransomware Attack – Considerations for Those Affected
The Fourth of July is usually reserved for fireworks, and this year was no different. On July 2, 2021, Kaseya, a provider of IT and security-management solutions, announced that it was the target of a supply-chain ransomware attack by the REvil/Sodinokibi (REvil) organized ransomware group. Kaseya’s virtual systems/server administrator (VSA) is a server and cloud-based…