Tag Archives: cyber liability

Book Review: Cyber Risks, Social Media and Insurance

We live in a world in which rapidly shifting technologies and communications modalities have changed the way we interact and conduct business. These new media and means of interaction have introduced innumerable benefits and efficiencies. Unfortunately, these new alternatives have down sides; among other things, they mean new risks and even liability exposures for both … Continue Reading

Guest Post: Preparing for a Cyber Caremark Lawsuit: Lessons from the Home Depot Derivative Complaint

As I noted in a September 9, 2015 post (here), a Home Depot shareholder has filed a data breach-related derivative lawsuit against certain of the company’s directors and officers, in which the plaintiff contends that the defendants breached their fiduciary duties by failing to ensure that customer credit card information was secure and protected. A … Continue Reading

Data Breach-Related Derivative Lawsuit Filed against Home Depot Directors and Officers

In early 2014, when plaintiffs initiated data breach-related derivative lawsuits against the boards of Target Corp. (here) and Wyndham Worldwide (here), there was some speculation that these cases might be the first of what could become a wave of data-breach related D&O lawsuits. But then the Wyndham Worldwide case was dismissed (refer here) and no … Continue Reading

While You Were Out

September is here. Labor Day has come and gone. That can mean only one thing – time to put away the surf boards, bungee cords, fencing foils, pogo sticks, nunchuks, hula hoops, light sabers, and unicycles, and get back to work. Yes, it is time to answer all those emails and return all of those … Continue Reading

When Data Hacks Lead to D&O Lawsuits, Actual and Threatened

Many observers, including even this blog, have speculated whether the rising wave of data breaches and cyber security attacks will result in litigation against the directors and officers of the affected companies. Indeed, in 2014, there were two sets of lawsuits filed against the boards of companies that had experienced high-profile data breaches, Target Corp. … Continue Reading

Guest Post: Cyber & Privacy Policy Exclusions: Analyzing Differences, Negotiating Modifications

The exclusions are an important part of any liability insurance policy, but this is particularly true of cyber liability insurance polices. In the following guest post, Robert Bregman, CPCU, MLIS, RPLU, Senior Research Analyst, International Risk Management Institute, Inc., takes a look at the ten of the most common exclusions found in cyber liability and … Continue Reading

O.K., This Is a Big Deal: 7th Cir. Reinstates Neiman Marcus Consumer Data Breach Class Action

In a ruling that could provide an important boost future consumer data breach class action litigation, the Seventh Circuit has reinstated the Neiman Marcus data breach lawsuit, ruling that the district court erred in concluding that the plaintiffs’ fear of future harm from the breach was insufficient to establish standing to pursue their claims. As Alison … Continue Reading

Next Up: A Home Depot Data Breach-Related D&O Lawsuit?

After claimants filed shareholders’ data breach-related derivative suits against the boards of Target (here) and Wyndham Worldwide (here), a number of commentators (including me) asked whether we could see a wave of cybersecurity related D&O lawsuits. Interestingly, since these two lawsuits were filed more than a year ago, there have been no further lawsuits of … Continue Reading

Guest Post: Courts Uphold California Privacy Claims Despite Vague Allegations: Opening The Litigation Floodgates?

Among the many concerns that arise whenever unauthorized appropriation or use of consumer data occurs is the possible violation of the consumers’ privacy that the access may represent. In numerous cases, aggrieved parties have tried to assert claims for these alleged privacy violations, but by and large these attempts have not been successful. However, as … Continue Reading

Guest Post: Is Employee Awareness and Training the Holy Grail of Cybersecurity?

In the current environment, most organizations are aware of the potential threats to their firms from a breach of their data systems and networks. Among the ways companies can protect themselves from these types of threats is through improved employee awareness and training. In the following guest post, Paul Ferrillo and Randi Singer of the … Continue Reading

Will Investors Sue Over the Sony Hack Attack?

 As I noted in my recent rundown of the top D&O stories of 2014, one of the most important developments during the year just finished was the emergence of cyber security as a D&O liability concern. During 2014, plaintiff shareholders launched cyber breach-related derivative lawsuits against the boards of Target and Wyndham (about which refer … Continue Reading

Guest Post: Cyber Security Indeed: Derivative Action Dismissed Where Board Proactively Addressed Cyber Risks and Exposures

The derivative lawsuit filed against the board of Wyndham Worldwide Corporation in connection with the series of cyber breaches the company had experienced was being closely watched as possibly representative of a potential new area liability exposure for corporate directors and officers. However, as I discussed in a prior post (here), on October 20, 2014, … Continue Reading

Dismissal Granted in Cyber Breach-Related Derivative Suit Filed Against Wyndham Officials

 Along with the separate derivative lawsuit filed against Target Corporation’s board, the cyber breach-related derivate action filed against Wyndham Worldwide Corporation’s board has been closely watched as representative of a potential new area  liability exposure for corporate directors and officers.  However, in an October 20, 2014 opinion, District of New Jersey Judge Stanley Chesler, applying … Continue Reading

Guest Post: Cyber Security and Cyber Governance: Federal Regulation and Oversight – Today and Tomorrow

It seems that every day there is yet another story in the business pages about a significant data breach at a major company. Cybersecurity is an increasingly important topic for companies and their shareholders, and the problems with cybersecurity are an increasing concern in Washington as well. In the following guest post Paul A. Ferrillo … Continue Reading