With an upward trend in large-scale ransomware attacks and the number of data breaches reported globally mandatory data breach notification will become law in Australia in February 2018 This will place privacy compliance and cyber security in sharp focus Partner Michael Park Lawyer Samantha Naylor ...

The Target data breach brought the liability of boards and directors in relation to cyber resilience into focus. Target's shareholders brought litigation against all of its directors, the chief financial officer and the chief information officer due to what was perceived as recklessness and disregar ...

In late August 2017 the US Food and Drug Administration recalled 465000 Abbott Laboratories pacemakers due to cyber security vulnerabilities Although this was the first time that the FDA had recalled a medical device because of cyber concerns they have been alive to the significant risk that a cyber ...

In response to the rising number of cyberattacks, new legislation has been introduced that proposes a mandatory notification regime that will take effect from February next year. ...

In circumstances where government departments and law enforcement agencies are unable or unwilling to effectively respond to cybercrime, organisations are increasingly questioning whether or not they have or ought to have a a right to 'hack back' as an offensive retaliatory measure. ...

Class actions arising out of data breaches have been common in the US for some time but in Australia were yet to see a plaintiff bring such an action successfully In some ways this is unsurprising Despite the fact that data breaches are now commonplace and that class action law firms are ...

ASIC's latest Corporate Plan has put cyber resilience high on the agenda ...

Where multiple entities jointly hold personal information compromised in a data breach only one of those entities will need to comply with the assessment and notification requirements under the Notifiable Data Breaches Scheme NDB Scheme That is compliance by one entity will be taken to constitute ...

As part of the new Consumer Data Right CDR framework a new regime of offences remedies and enforcement powers will be implemented The Australian Competition and Consumer Commission ACCC will have primary oversight for the enforcement of the regime though the OAIC will handle privacy complaints in ...

While the Consumer Data Right CDR regime is likely to benefit businesses by increasing access to greater consumer data and customers by increasing choice and competition the draft legislation leaves a lot of the details to be finalised at a later date primarily through the Australian Competition and ...