The Law Offices of Mary N. Chaney, P.L.L.C.
The Cyber Security Law Firm of Texas

Mary's Blog

The Breach Whisperer

About Mary....

Mary N. Chaney, Esq., CISSP® is a former Special Agent for the FBI where she investigated cybercrime, a seasoned corporate executive that built and operated information security teams and now a cybersecurity attorney.

As a self-described “Breach Whisperer” our firm can train your company to properly prepare for your eventual breach!

The overall goal of our firm is to use our wealth of knowledge and expertise to help support, translate and advise, Boards of Directors, CIO's, CISO's and General Counsel's on how to legally protect their company from cyber related risk.

Blog Entries


 

Insiders are always a BIG problem! But.....

See Article Here

Verizon's Protected Health Information Data Breach Report found that 58% of data security incidents in healthcare involved insiders. That's not surprising, whether by mistake or maliciously, insiders are by far more capable of causing a heck of a lot of damage. What was surprising to me when I read the article and the report was that "lost and stolen laptops with unencrypted personal health information remain a cause of breaches." Huh?? Really in 2018 there are still a lack of very basic security controls like encryption for laptops? 

If you read my other posts, I often talk about reasonableness being the standard to meet as to not be found negligent when you have a breach. Do you think any size company is acting reasonable if they have unencrypted laptops in their environment which store, access, or transmit sensitive information? I personally believe that the company is negligent!