SHIELD

Preventing “Credential Stuffing” Attacks, Guidance from NY State Attorney General Letitia James

By Joseph J. Lazzarotti on January 10, 2022

Posted in Consumer Privacy, Data Breach Notification, Data Security, Identity Theft, Incident Response Planning, Information Risk, Written Information Security Program

After reading New York Attorney General Letitia James’ Business Guide for Credential Stuffing Attacks (“Guide”), I promptly reminded my family (and myself!) to change passwords. The practice of using the same password for multiple online accounts is one that most, if not all of us, use from time to time. According to a recent study,…

Does Your Cyber Insurance Policy Look More Like Health Insurance?

By Joseph J. Lazzarotti on January 3, 2022

Posted in California Consumer Privacy Act, Consumer Privacy, Data Breach Notification, Data Security, HIPAA, Identity Theft, Incident Response Planning, Information Risk, Third Party Service Providers, Written Information Security Program

Over the past several years, if your organization experienced a cyberattack, such as ransomware or a diversion of funds due to a business email compromise (BEC), and you had cyber insurance, you likely were very thankful. However, if you are renewing that policy (or in the cyber insurance market for the first time), you are…

Workplace Privacy, Data Management & Security Report

SHIELD

Preventing “Credential Stuffing” Attacks, Guidance from NY State Attorney General Letitia James

Does Your Cyber Insurance Policy Look More Like Health Insurance?

Jackson Lewis

About Jackson Lewis