Cyber Law Revolution

Send us a textEp. 95 of the Cyber Law Revolution is live!In this episode, thrilled to have Patrick Cannon, chief claims officer from Onda, join the show and discuss his path in cyber, current market conditions, and where he sees the market going over the next 3-5 years.You won't want to miss it!Keep the questions, calls, etc. coming - 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com.

Send us a textEp. 94 of the Cyber Law Revolution is live!In this episode, we discuss the recent Coinbase ransomware attack, the likely cause of the attack, the reputational impact, and how cryptocurrency is the Wild West.You won't want to miss it!Keep the calls, questions, comments, etc. coming – 410-917-5189 or spollock@mcdonaldhopkins.com

Send us a textEp. 93 of the Cyber Law Revolution is live!Thrilled to have David Rock, chief claims officer at Trium, with us to discuss SME v. large enterprise risk, biggest fear from a claims perspective for large enterprise breaches, vendor incidents, and a lot more!You won't want to miss his insight!Keep the questions, calls, comments, etc. coming – 410-917-5189 or spollock@mcdonaldhopkins.com

In this episode, we discuss the value of cyber conferences (shout out to NetDiligence, Zywave, IAPP, PLUS, Execusummit, and all the others I missed). Specifically, beyond the sessions, how the conversations in the background help grow understanding of legal, market, and security trends, collaboration, and genuine connections in the industry. I can't neglect a special shout-out to meeting Shawn Melito in a buffet line at a Zywave conference in 2019, discussing the pros and cons of pasta salad. Further, we dive into the unforeseen consequences of mass-scale vendor breaches. Is the market ready for a vendor to throw its hands up, declare bankruptcy, and push all notification obligations to its insureds? Is the market ready for the mass-scale class actions that would follow? Do insurers need to start thinking about sublimit for these types of events? I would love to get everyone's thoughts so keep the questions, calls, and comments coming! E-mail me at spollock@mcdonaldhopkins.com or call me at 410-917-5189. 

Ep. 91 of the Cyber Law Revolution is live!In this episode, we discuss the PowerSchool breach, the downstream implications, how organizations should respond, and learning the same lesson over and over again.Keep the questions, calls, comments, etc. coming - 410-917-5189 or spollock@mcdonaldhopkins.comEnjoy!

Ep. 90 of the Cyber Law Revolution is live!In this episode, we discuss two trends we expect to see in 2025 and one we hope to see: AI, regulators leveraging privacy laws for enforcement actions, and someone taking a class action to trial!Keep the questions, calls, etc. coming - 4109175189 or spollock@mcdonaldhopkins.comEnjoy!

Episode 89 of the Cyber Law Revolution highlights a crucial shift in mindset regarding how organizations approach relationships in the realm of cybersecurity and privacy. By emphasizing partnerships over traditional vendor or service provider labels, it acknowledges the collaborative effort required to effectively address cyber incidents. This perspective likely promotes a more integrated approach, encouraging organizations to share knowledge, resources, and strategies in real-time during a crisis. It's an important topic, especially as cyber threats continue to evolve.Keep the questions and calls coming - 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 88 of the Cyber Law Revolution is live!In this episode, we explore the strategies for opting in and out of notifications regarding vendor breaches, as well as the intricate relationships between data owners and data maintainers.Don't miss it!Keep the questions, calls, comments, etc. coming - 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 87 of the Cyber Law Revolution is Live!Thrilled to have Sean Finch, Managing Director of the UK and European at Cypher, join the show.Sean drops a ton of knowledge on the difference between the UK and US markets related to incident response, restoration and recovery, ransomware, insurance risk tolerance, and much more!You don't want to miss it!Keep the questions, calls, etc. coming – 4109175189 or spollock@mcdonaldhopkins.com

Episode 86 of the Cyber Law Revolution is live!In this episode, we discuss the ramifications of the CDK breach, third-party management, and the importance of redundancy!Keep the questions coming! 4109175189 or spollock@mcdonaldhopkins.com

Ep. 85 of the Cyber Law Revolution is live!In this episode, Shari Mattis, AVP of claims at ANV, drops by to discuss building a cyber panel, the importance of having that dream team when a claim comes in, what makes an organization attractive for a cyber carrier, and cyber red flags in organizations.You won't want to miss it!Keep the questions and calls coming! 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 84 of the Cyber Law Revolution is live!Thrilled to have Demi Traikovich of CAC Specialty drop by to discuss her path to cyber insurance, the wholesale market, the retail retail, trends, and coverage issues!You won't want to miss it!Keep the questions, calls, comments, etc. coming - 410-917-5189 and spollock@mcdonaldhopkins.com.

Ep. 83 of the Cyber Law Revolution is live! In this episode, we dive into the importance and role of breach coaches. We lay out the reasons why you want a breach coach involved the very instant an incident occurs, how we help navigate the situation, and the benefits to our involvement.I hope this provides some good insight into our day to day!Keep the questions and calls coming - 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 82 of the Cyber Law Revolution is live!In this episode, we do a deep nerdy dive into Maryland's New Data Privacy act, the implications behind, how to comply, and the enforcement mechanisms.Bottom line: get ahead of the privacy compliance curve!Keep the questions and calls coming - 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 81 of the Cyber Law Revolution is live!In this episode, we discuss the crippling impact of the ransomware attack on Change Health and the downstream implications.What is the lesson: vendor breaches are not going away, and we must continue our due diligence!Keep the questions and comments coming! Call me 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com

Ep. 80 of the Cyber Law Revolution is live!In this episode, we dive into the FBI's (and our international police partners) takedown of LockBit's webpage and seizure of decryption keys, LockBit's failure to patch, and implications downstream!You won't want to miss it!Keep the questions and calls coming. Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com

Ep. 79 of the Cyber Law Revolution is live!In this episode, we discuss 23andMe's novel legal theory regarding recycled usernames and passwords, and its impact on the data breach. Further, we jump into the PR nightmare this position has caused and the potential consequences of such a legal position.You won't want to miss it!Keep the questions, calls, and comments coming! Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com.

Ep. 78 of the Cyber Law Revolution is live!Chris Loehr of Solis drops by to discuss what we saw in 2023, provide insight into  what to expect in 2024, and tips for organizations to mitigate the harms of a data breach. You won't want to miss it!Keep the questions and calls coming! Call me at 410-917-5189 or e-mail at spollock@mcdonaldhopkins.com!Enjoy!

Ep. 77 of the Cyber Law Revolution is live! In this episode, we discuss how China is on the offensive with the cyber war and trying to position itself in our critical infrastructure for future conflicts. Scary scenario and one we need to keep a close eye on.As always, keep the questions, calls, and comments coming - call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com. Enjoy!

Ep. 76 of the Cyber Law Revolution is Live! In this episode, Anthony Hess, CEO and Co-Owner of Asceris, drops by to discuss the differences in the DFIR and insurance world when comparing the US to the UK, along with lots of great insight into the industry! Keep the questions and calls coming - 410-917-5189 or spollock@mcdonaldhopkins.com. Enjoy!

Ep. 75 of the Cyber Law Revolution is live! In this episode, we discuss the Video Privacy Protection Act and other privacy laws and how plaintiff attorneys are using these old privacy laws to bring new lawsuits based on the emerging website tracking technologies.  Keep the questions, calls, and comments coming - 410-917-5189 or spollock@mcdonaldhopkins.com Enjoy!

Ep. 74 of the Cyber Law Revolution is live!In this episode, we discuss the attacks against MGM and Caesars, the different approaches both took to response, the implications, and the lessons we learn.I will give you a hint: prepare, prepare, prepare!Keep the questions and calls coming! 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 74 of the Cyber Law Revolution is live! In light of MoveIT, we revisit the importance of developing and testing an incident response plan and performing vendor due diligence in this episode. We discuss how organizations need to go a step further and ask, "Who are the friends of our friends." Specifically, who are our vendors working with, and what due diligence is being done to ensure our information is secure? Keep the questions and calls coming! Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com.

Ep. 73 of the Cyber Law Revolution is live!  We are thrilled to have Larry Baldino, President of Cyber, Technology, and Professional Liability at Dual Commercial, on the show.   In this episode, Larry brings his industry knowledge regarding the importance of cultivating trust with insureds before an incident, the future of the cyber market, and what SMBs need to be thinking about regarding cyber hygiene.  You won't want to miss it!  Keep the questions, comments, etc. coming! Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com. 

Ep. 72 of the Cyber Law Revolution Podcast is live!  In this episode, we are joined by Perry Tsao, head of claims, and Rueben Medina, head of security of Elpha Secure, to talk about the benefits of working with your insurer to see behind the “iceberg” and get better protected. You won't want to miss it!Keep the questions and calls coming. Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com.

Ep. 71 of the Cyber Law Revolution is live!I am thrilled to have Margaux Weinraub of Graham Company and Alexandra Bretschneider of Johnson, Kendall, & Johnson join the Show! Margaux and Alexandra provide deep insight into the role of a cyber broker, the current state of the market, the war exclusion, and how to become insurable.  You won't want to miss it! Keep the questions and calls coming. 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 70 of the Cyber Law Revolution Podcast is live!  ALERT ALERT ALERT  In this episode, we discuss the how MoveIT experienced a zero-day vulnerability attack and the steps companies need to take NOW to protect themselves!  Specifically, if you use MoveIT: 1. Implement the patch or mitigation. 2. Contact your cyber insurer and or a breach coach (especially if you do not have cyber insurance). 3. Utilizing your cyber insurer or breach coach, start a forensic investigation to determine the scope and extent of the impact to your organization, and potential notification obligations.  Act now to protect yourselves!  Call or e-mail me with questions or to discuss how we can assist. Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com

Ep. 69 of the Cyber Law Revolution is live!In this episode, we dive into the DOJ and the FBI placing a bounty on the central figure beyond the development and deployment of the Hive, LockBit, and Babuk ransomware variants. We also discuss how this further demonstrates close cooperation between these groups.Keep those questions, calls, comments, etc. coming – 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 68 of the Cyber Law Revolution is live!  In this episode, we discuss the good and bad of media coverage during and after a cyber incident or data breach. Specifically, we dive into how the media helps push out information and can also be a tool for the threat actors and cyber criminals to extort further companies, hospitals, schools, non-profits, etc.   You won't want to miss it!  Keep the questions and calls coming - 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 67 of the Cyber Law Revolution is live!In this episode, we discuss HHS and OCR shifting resources to handle the influx of complaint under HIPAA and HITECH, and what this means for organizations subject to these acts!Keep the questions, calls, comments, etc. coming - 410-917-5189 or spollock@mcdonaldhopkins.com.

Ep. 66 of the Cyber Law Revolution is live!In this episode, we continue our conversation about data breach class action lawsuits and how they have become widespread and rampant. You won't want to miss it!Keep the calls and questions coming - 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 64 of the Cyber Law Revolution Podcast is live!In this episode, we discuss the FBI's takedown of the Hive's website and the new privacy and cybersecurity laws coming out in 2023!Keep those questions and comments coming! Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com!Enjoy!

Ep. 64 of the Cyber Law Revolution Podcast is live!In this episode, we dive into India's amended data protection law, the 6 hour reporting requirement, and the expansive scope of the law.You won't want to miss it!Enjoy!

Ep. 63 of the Cyber Law Revolution is live!   In this episode, Sean Bowen, Esq., from McDonald Hopkins, joins the show to discuss pixels, why they are forefront in the privacy realm, and the recent HHS/OCR guidance.  Trust me, you don't want to miss it!  Keep the questions, calls, etc., coming. Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com.

Episode 62 of the Cyber Law Revolution is live!We do a joint episode with Felicia King and Breakfast Bytes. In the episode we dive into current trends, what to expect moving forward, and third-party risk management!Keep the questions and calls coming! 410-917-5189 or spollock@mcdonaldhopkins.comEnjoy!

Ep. 61 of the Cyber Law Revolution is live!THE INVASION OF THE MCDONALD HOPKINS DP TEAM (or at least some of them!)! In this episode, we are joined by Sanjana Palla, Kelly Campbell, Heather Shumaker, Stephen Robison, and Meghan Collins, all cybersecurity and privacy attorneys at McDonald Hopkins! Each provides inside information on why they decided to pursue a career in cyber and privacy law, how they got into the area, and advise to new attorneys looking to break into the field!Keep the questions and comments coming! 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 60 of the Cyber Law Revolution is live!Thrilled to have Linda Comerford, AVP of Cyber Services and Incident Response at AmTrust, joins the show to talk about the claims process, how to become a more attractive insured, and common missteps during a cyber claim!You won't want to miss it!Keep the questions and calls coming! 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 59 of the Cyber Law Revolution is live!In this episode, we dive into the FBI's IC3 2021 report and discuss the trends that the FBI found in 2021 related to cybercrime.Some great insight and facts that you won't want to miss!Keep the questions and calls coming! Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com.

Ep. 58 of the Cyber Law Revolution is live!ALERT! Microsoft just announced two new zero day vulnerabilities!Buckle up and get a head of the threat!Prepare, Prepare, Prepare!Keep the questions, calls, comments coming - call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com.Enjoy!

Ep. 57 of the Cyber Law Revolution is live.In this episode, we dive into the importance of performing cyber and privacy due diligence related to M and A transactions.This is an emerging and important area of M and A law that we will continue to see impact deals in the future!As always, keep those questions and calls coming. Call me at 410-917-5189 or e-mail at spollock@mcdonaldhopkins.com. Enjoy!

Ep. 56 of the Cyber Law Revolution is live!In this episode, we discuss Lockbit getting hit by a DDoS attack, the potential legal implications of the group launching the attack against Lockbit, and Lockbit incorporating DDoS attacks into their arsenal!Great stuff that you won't want to miss! Keep the questions, calls, and comments coming –410-917-5189, spollock@mcdonaldhopkins.com, or comment below!Feel free to recommend future topics!Enjoy!

Ep. 55 of the Cyber Law Revolution Podcast is live!Cybersecurity, data security, and privacy laws are the fast-moving and evolving regulations in the country. Don't blink, or you will miss an amendment or change existing law. The NYDFS demonstrated just that in a recent draft amendment to its already strict cybersecurity law. In this episode, we do a nerdy dive into the new proposed amendments.Feel free to call (410-917-5189), e-mail (spollock@mcdonaldhopkins.com), or comment below!

Ep. 54 of the Cyber Law Revolution is live!In this episode, we discuss the potential advent of a federal privacy law - the American Data Privacy and Protection Act (ADPPA) - and its impact on nationwide privacy standards.Also, we dive into Florida banning ransom payments for public entities.You won't want to miss it! Keep those questions, calls, comments, etc. coming - 410-917-5189, spollock@mcdonaldhopkins.com, or comment below.

Ep. 53 of the Cyber Law Revolution Podcast is live!In this episode, we discuss Lockbit 3.0's new bug bounty program and how they love to exploit greedy humans.Also, we dive into Marriott's newest data breach.You don't want to miss it....do you ever want to miss this podcast though?! ;) 

Ep. 52 of the Cyber Law Revolution Podcast is live!In this episode, we dive into the recent consent enforcement action by the NYDFS against Carnival Cruises and its subsidiaries.Let me tell you, this consent action was no joke, and the NYDFS hammered Carnival on deficiencies related to cybersecurity and compliance.Tune in to understand the practical effects of this decision. Keep those questions, calls, and comments coming (comment below!)...410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 50 of the Cyber Law Revolution Podcast is live!In this episode, we dive into cloud based incident response and how it presents new challenges compared to traditional incident response.Also, we touch on Indiana's new amended data breach notification law. You don't want to miss it!

Ep. 49 of the Cyber Law Revolution is live!In this episode, I discuss the recent data breach with the Texas Department of Insurance and its widespread implications.Also, I dive into the cyber compliance vulnerabilities with medical institutions. Enjoy!

Ep. 48 of the Cyber Law Revolution podcast is live!In this episode, we discuss the resurgence of the notorious ransomware group, REvil, the broader implications of their reappearance, and how to defend ourselves against such groups proactively.Keep those questions, calls, comments coming - 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 47 of the Cyber Law Revolution Podcast is live!In this episode, we delve into my position on data breach class action lawsuits. Specifically:Who is actually getting paid or compensated (hint: it is not the people allegedly injured)?Why are they getting compensated? Why are speculative damages acceptable? Are these class actions causing more harm than good?You won't want to miss it!Keep the questions/calls/comments coming! 410-917-5189 or spollock@mcdonaldhopkins.com

Ep. 46 of the Cyber Law Revolution is live!  Pleased to have Felicia King, Security Architect and Information Security Officer, from QPC Security on the show!  Felicia turns the tables on me and puts me on the spot to talk about the importance and role of a breach coach, how we all work as a team, and preparation preparation preparation!  Keeps the questions, calls, comments, etc. coming. Call me at 410-917-5189 or email me spollock@wtplaw.com  Enjoy!

Ep. 45 of the Cyber Law Revolution is live!    Pleased to have Chris Loehr, EVP, and CTO, of Solis Security, back on to talk about the cyber ripple impact caused by the Russian invasion of Ukraine, Conti's internal chat logs and leaks, and the corporate infrastructure of ransomware groups.    Great stuff!     Keep the questions, comments, etc., coming by calling me (410-917-5189), emailing me at spollock@wtplaw.com, or commenting below!