Current Industry News
Payment Card Rules v. PCI DSS: District Court Opens the Door to Potential Data Breach Tort Liability Based on Common Law Duties and Section 5 of the FTC Act
CPW has been covering data breach litigations for some time (as a reminder of recent rulings of significance, check out our prior posts here and here). This includes In Re: Wawa, Inc. Data Security Litigation and key related cases back in November and January. On Thursday, the U.S. District Court for the Eastern District of Pennsylvania issued its long awaited opinion, granting in part and denying in part a motion to dismiss filed by Wawa, a convenience store chain, stemming from a class action lawsuit filed against it by a group of credit unions following an alleged data breach. Read on to learn how it went down and what it may mean for other data breach litigations.
TitleMax and State Argue Over Short-Term Loan Term Limits Before Supreme Court
Nevada law allows for businesses to extend short-term, high-interest loans of various types to individuals, but sets a generally strict 210-day time limit to avoid the massive accumulation of interest. The law allows lenders to give grace periods after the 210-day timeframe, but only under the terms that a lender does not offer any new loan agreement or charge the customer additional interest.
Unlike Dollar Loan Center or other well-known “payday lenders,” TitleMax offers what are called title loans, which are extended after a person exchanges the title of their vehicle for collateral. State law prohibits title loans from exceeding the value of a car, but state regulators argued in court that the company’s “refinancing” practices violated the intent of the law.
Telrock supports its rapid growth with the appointment of a dedicated Chief Information Security Officer to its senior management team
Atlanta, GA and London, UK – May 12, 2021 – Telrock is proud to announce and welcome Ray Jackson as the company’s newly appointed Chief Information Security Officer (CISO). Ray has more than 20 years of experience in IT and Information Security (InfoSec) including a prior position at Moneycorp, a global payment services Fintech. Ray has extensive payment card security knowledge, through prior delivery of IT Security consultancy and as a Payment Card Industry (PCI) Data Security Qualified Security Assessor. Some of his impressive accreditations include CESG Certified Professional, Certified Information Systems Security Professional, and ISO27001 Certified ISMS Lead.
Microsoft 365 email data breaches take center stage amid WFH in a new report
According to the software company Egress, 85% of organizations using Microsoft 365 have experienced an email data breach.
Over the last year, organizations worldwide have adopted remote work policies to mitigate the spread of COVID-19 in-house. During this time, companies have tapped virtual collaboration tools to enable remote operations with varying degrees of success. On Wednesday, software company Egress released a report titled “Outbound email: Microsoft 365’s security blind spot” highlighting email data breaches and IT frustrations during the coronavirus pandemic.