LEGAL THOUGHTS

This blog contains our personal opinions on legal topics that interest us.

Expiring passwords

May 2, 2019

|

Henry Park

Two years ago, I wrote a blog post about data security myths, in particular about how frequently changing passwords was good.

It seems Microsoft was paying attention to the NIST guidance. 

In a recent blog post on the security baseline for Windows 10, Microsoft dropped t...

Read More

They did what with a IOT thermostat?

April 19, 2018

|

Henry Park

This is almost too crazy to believe -- and it sounds like something out of a movie.

In 2017, a casino's high-roller database was stolen via an internet of things (IOT) connected thermostat for a fish tank in a lobby (see Washington Post article; Mashable article)

Putting...

Read More

GPDR - Implementing it in Iceland

February 26, 2018

|

Henry Park

When discussing the EU's forthcoming General Data Protection Regulation (GDPR), commentators often say that it will be in force from May 25, 2018 and that it automatically becomes law in the EU member states. It also will be effective in the countries that are a part o...

Read More

Border searches of attorney smart phones

January 16, 2018

|

Henry Park

​In 2016, US Customs and Border Patrol (CBP) performed border searches on approximately 19,000 electronic devices, both inbound and outbound. In 2017, CBP searched approximately 30,000 electronic devices, which is roughly 60% more searches.  See CBP post

You might thi...

Read More

Equifax - Security fail

September 13, 2017

|

Henry Park

     How much worse can things get for Equifax in the wake of its data breach that could have affected approximately 143 million Americans -- or about 1/2 of the population of the United States (see link 1, link 2, link 3). 

     Well, it turns out that E...

Read More

Data security - Myths busted

June 29, 2017

|

Henry Park

     Last year, I wrote about a security myth that frequently changing passwords is good for security (see blog post).

     The Trusted Identity Group at the National Institute of Standards and Technology released on March 31, 2017 a...

Read More

OMG - The sky is falling. Laptops may be banned in cabin from in Europe to US flights

May 14, 2017

|

Henry Park

    In March, the U.S. prohibited passengers heading to the U.S. from carrying any electronic devices larger than a smartphone in the passenger cabin from 10 countries in the Middle East and Northern Africa (link 1). The U.S. reportly will expand its large electro...

Read More

Data privacy and data security tools

February 13, 2017

|

Henry Park

   What do you know about your data?  How should you be handling it?

     I recently received an email from Tresorit that provided a self-assessment tool to evaluate how you are handling your data.  The tool provides an evaluation concern...

Read More

Does the location of where email is stored matter? Maybe not.

February 5, 2017

|

Henry Park

     Last week, U.S. Magistrate Judge Thomas J. Rueter in Philadelphia ruled that Google pursuant to a Stored Communication Act (SCA) warrant should turn over any emails in its possession related to the target of an FBI investigation, even those emails residing on a fo...

Read More

Yahoo! and closing accounts

December 15, 2016

|

Henry Park

   Yahoo! announced yesterday that a billion user accounts were hacked in 2013 (link). This follows last year's announcement that 500 million user accounts were hacked. 

      A few websites are saying that Yahoo! users should close down their accounts (...

Read More