Don’t Delay! California Likely to Soon Require Data Breach Notifications to be Provided to Consumers Within 30 Days
Attorneys at Fisher Phillips write: Read more at JDSupra.
Obligations under Canada’s data breach notification law
Data breach notification law is governed by the Personal Information and Electronic Documents Act (PIPEDA). This federal law regulates the handling of personal information during commercial transactions. This includes the collection, use, and disclosure of personal data. As Lexpert explains, by extension, this also includes the storage of information while in use: Read more at […]
US Sanctions Russian Cybercrime Group Aeza for Hosting Ransomware and Global Attacks
United24 reports: The United States has imposed sanctions on the Russian cybercrime group Aeza Group and its associated global network, the US Department of the Treasury’s Office of Foreign Assets Control (OFAC) announced on June 1 [sic]. OFAC designated Aeza Group for its role in supporting cybercriminal operations targeting victims in the United States and […]
Patients Allege Home Delivery Pharmacy Failed Timely Notification of Data Breach
Pharmacy Times reports: In January 2021, a nationwide mail-order pharmacy located in Massachusetts experienced a data breach. The pharmacy discovered the breach in May 2021 and investigated to determine its scope. Personally identifiable information (PII), including names and Social Security numbers for more than 75,000 customers, was breached. In February 2022, 9 months after the […]
New York State Department of Financial Services Issues Guidance on Cybersecurity, Sanctions, and Virtual Currency Following Escalation of Iran Conflict
From Covington and Burling: Read more at Inside Privacy.
Texas Enacts Liability Shield From Punitive Damages for Certain Small Businesses That Adopt Cybersecurity Programs
From attorneys at Jackson Lewis: On June 20, 2025, Texas Governor Greg Abbott signed SB 2610 into law, joining a growing number of states that aim to incentivize sound cybersecurity practices through legislative safe harbors. Modeled on laws in states like Ohio and Utah, the new Texas statute provides that certain businesses that “demonstrate[] that at the time […]
State Data Breach Notification Laws – June 2025
Foley & Lardner has updated a resource on state laws. From their website:
Marriott wins appeal to block class action over data breach
The Daily Record reports an appellate decision that is probably quite a relief to Marriott International: The U.S. Court of Appeals for the 4th Circuit has reversed a lower Maryland court’s recertification of plaintiff classes in a pair of consolidated lawsuits filed against Marriott and an information technology service provider for a 2018 data breach, handing down a major […]
I Joined Every Class Action Lawsuit I Could Find, and So Can You
Is this becoming a growing trend with more people signing up for every class action lawsuit they might be eligible for? How much money can you get this way? WIRED reports: In early April of this year, after more than a decade of litigation and a $90-million settlement, Mark Zuckerberg sent me forty bucks on Venmo. […]
PowerSchool hacker pleads guilty, released on personal recognizance bond
DataBreaches.net reports: He’s just a frail-looking teenager, but he sent threatening emails to get his victims to pay his extortion demands. Today, 19 year-old Assumption College student Matthew Lane waived indictment and pleaded guilty in a Worcester courtroom to hacking an unnamed telecom company and an unnamed edtech vendor, widely known to be PowerSchool. As per the plea […]