May 26, 2020

The Verizon 2020 Data Breach Investigations Report ("DBIR") is here.  In this 13th DBIR, Verizon analyzed a record total of 157,525 incidents, of which 32,002 met their quality standards and 3,950 were confirmed data breaches. 

Before we dive into some the data, here are some helpful definitions:

  • Threat actor: Who is behind the event? This could be the external “bad guy” that launches a phishing campaign or an employee who leaves sensitive documents in their seat-back...

May 16, 2020

This week's Weekly Debrief covers hackers endangering COVID-19 vaccine research, pandemic scams, what business data hackers want, FTC complaint that TikTok violates children's privacy law, and an update on Federal data privacy legislation.


May 11, 2020

For some small businesses, securing your information systems (and your proprietary data) might seem complicated and expensive, but it doesn't have to be.  After all, cybersecurity can simply be described as implementing practices, procedures, and technologies to protect the confidentiality, integrity, and availability of data (i.e., to help prevent unauthorized access to data and cyberattacks).

A cybersecurity program can begin with, for example, creating information security...

May 1, 2020

This week's Weekly Debrief covers interesting topics, including the cost to launch a cyberattack, LabCorp facing a lawsuit claiming failure to address security problems, cyber insurance coverage gaps, and COVID-19 privacy issues.


April 24, 2020

This week's Weekly Debrief covers several interesting topics, including network segmentation, coronavirus scams, public sector ransomware attacks, NFL cybersecurity, the Illinois biometric privacy law, and the global privacy landscape.


  • NetworkWorld – Why Network Segmentation Matters

    • ​"When IT leaders hear about segmentation, their first thought is usually about dividing a network up using VLANs or VXLANs. But segmentation also plays a critical security role in securing dynamic mu...

April 17, 2020

This week's Weekly Debrief covers some interesting topics, such as threat modeling, double extortion ransomware attacks spike, shadow IT issues in wake of COVID-19, and blockchain-based VPNs and privacy tech.


April 17, 2020

This week, the Government Accountability Office ("GAO") published a report finding that the Department of Defense ("DoD") has "not fully implemented three of its key initiatives and practices aimed at improving cyber hygiene."

GAO conducted this study, in part, because DoD has become "increasingly reliant on information technology (IT) and risks have increased as cybersecurity threats evolve."  GAO found that some 90% of cyberattacks could be avoided or defeated through basic cyber hygiene, which...

April 10, 2020

This week's Weekly Debrief covers several interesting topics, including CISA/NCSC's joint cyber threat update, Zoom's cybersecurity practices, cyberattacks increasing amid COVID-19, law firm data security, and State's looking to CCPA for how to handle data privacy legislation. 


April 8, 2020

Today, the U.S. Cybersecurity and Infrastructure Security Agency ("CISA") published a joint advisory with the UK’s National Cyber Security Centre ("NCSC") in light of cybercriminals exploiting the COVID-19 pandemic by targeting individuals and organizations with a range of ransomware and malware.

According to the joint advisory, some examples include scams with "emails containing malware which appear to have come from the Director-General of the World Health Organization (WHO), and others wh...

April 3, 2020

This week's Weekly Debrief includes articles on cybercriminals targeting Zoom, Google, and Teams, Marriott's second data breach, best practices to manage third-party risk, privacy settings on Zoom, and coronavirus-era surveillance and biometric systems posing privacy problems.


Please reload

About CyberJudicata

Welcome to CyberJudicata an informational blog/website focusing on cybersecurity and privacy issues, including cyber policy, data breach, incident response, data security, regulatory compliance, and cyber insurance.

CyberJudicata is published by Joshua Duvall, managing partner at Matross Edwards, a law firm providing government contracts and cybersecurity legal services to small and mid-sized businesses.

Contact Matross Edwards


Search By Tags
  • Matross Edwards
  • LinkedIn
  • Twitter

Copyright © 2020 Joshua B. Duvall. All rights reserved.

CyberJudicata™ #cyberjudicata

LegalJudicata™ #legaljudicata

GovConJudicata™ #govconjudicata