Cuckoo's Nest https://cuckoosnest.club/ Private Club Tue, 03 Oct 2023 09:18:00 +0000 en-US hourly 1 https://wordpress.org/?v=6.5.2 https://i0.wp.com/cuckoosnest.club/wp-content/uploads/2023/12/cropped-Cuckoos-Nest-Dark-Green-1.png?fit=32%2C32&ssl=1 Cuckoo's Nest https://cuckoosnest.club/ 32 32 230277135 Will the SEC’s proposed climate risk disclosure rules survive Supreme Court scrutiny? https://cuckoosnest.club/will-the-secs-proposed-climate-risk-disclosure-rules-survive-supreme-court-scrutiny-3/?utm_source=rss&utm_medium=rss&utm_campaign=will-the-secs-proposed-climate-risk-disclosure-rules-survive-supreme-court-scrutiny-3 https://cuckoosnest.club/will-the-secs-proposed-climate-risk-disclosure-rules-survive-supreme-court-scrutiny-3/#comments Tue, 03 Oct 2023 09:18:00 +0000 https://avvocato.vamtam.com/?p=8886 Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours. As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours? If you...

The post Will the SEC’s proposed climate risk disclosure rules survive Supreme Court scrutiny? first appeared on Cuckoo's Nest.

The post Will the SEC’s proposed climate risk disclosure rules survive Supreme Court scrutiny? appeared first on Cuckoo's Nest.

]]>

Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours.

As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours?


If you think you’ll never have to worry about a data security breach, think again. It can happen whether you head up a large firm with an ironclad IT system or a small, local business.


Half of all businesses have already experienced a data security breach and cases continue to rise, yet most business leaders do not have an instant response plan in place. It’s a dangerous risk to take, as a cyber security breach could shut down your operations and have a widespread impact on your employees, customers, board members, and anyone else who’s on record of having interacted with your business.


The very thought might make you uneasy, though that’s not necessarily a bad thing.

“It means you’re on your toes and you’re aware of the problem,” says Andrew Buck, business lawyer at Avvocato Law in Winnipeg.”

Tweet

1. Inventory your data

Inventories aren’t just for tangible goods. All businesses should inventory their data, too.

“How could you possibly understand the extent of the problem if you don’t know what information you have in the first place?” Andrew asks.

2. Develop an incident response plan

It could be a hacker that shuts down your computers or a disgruntled employee selling information to your competitors (fun fact: 22 per cent of breaches come from within a company), but if it happens—you need to know what to do, and quickly.

Contain

“You need to shut off the tap,” says Andrew.

That might mean reaching out to forensic experts or a systemwide reset, but your first job is stopping the flow of any more classified information.

Mitigate

The mitigation phase is where you’ll look at how you can reduce the harm to those who have been affected by the breach. For instance, if the breach involved a leak of financial information, it might mean offering free credit monitoring for a year or two.

Notify

In Canada, you’re required to report privacy breaches or data security incidents that cross a certain threshold—what is known in the legal world as real risk of significant harm. IT professionals, lawyers, and privacy regulators (find details at the Office of the Privacy Commissioner of Canada) can help you determine what that threshold is.

Canada’s privacy law (the Personal Information Protection and Electronic Documents Act, or PIPEDA) specifies that a breach report should be made as soon as feasible, as in—as soon as you get a grip on what happened. You can and should update your reporting as more details come in.

Andrew points to the case of Ashley Madison, a Canadian dating site for those who are married or coupled. It faced a significant security breach in 2015, with user data released to the public by hackers causing significant harm to individuals families and reputation. The Office of the Privacy Commissioner of Canada did a thorough investigation and its report, Andrew says, serves as an example of what is expected in terms of protecting privacy and data security.

3. Practice your incident response plan

Your incident response plan should not be a document that sits in a drawer and collects dust. Practice it, update it, and know it well, so you’re ready to put it into action as soon as you need to.

4. Protect the data you’re entrusted with

If you’re a board member, you may be privy to confidential company information. Andrew suggests seeking resources that provide guidance for boards, such as Canadian Securities Administrators (CSA), the Investment Industry Regulatory Organization of Canada (IIROC) and the Office of the Superintendent of Financial Institutions (OSFI).

5. Understand the threats

Ransomware is software that essentially holds your data hostage until you pay a sum to retrieve it. Still, there’s no guarantee paying that sum will get your data back.

The best thing you can do is to have a data backup and a disaster recovery system ready so you can bring your data back immediately. With ransomware attacks expected to increase by 100 per cent in 2022, it’s important to know how to react should one happen.

6. Train staff

Andrew tells of an email he received from a regular client that read, “Here’s the report you asked for.” He hadn’t requested a report, so he responded to see if the email was legit. The client assured him it was. Andrew then forwarded the email to his company’s IT department and confirmed it was spam. Threats are becoming increasingly sophisticated. Andrew recommends training staff on how to identify threats, using different passwords for different applications, and picking up the phone if there’s uncertainty over an email. Two-factor authentication can weed out threats like the one Andrew experienced.

The post Will the SEC’s proposed climate risk disclosure rules survive Supreme Court scrutiny? first appeared on Cuckoo's Nest.

The post Will the SEC’s proposed climate risk disclosure rules survive Supreme Court scrutiny? appeared first on Cuckoo's Nest.

]]> https://cuckoosnest.club/will-the-secs-proposed-climate-risk-disclosure-rules-survive-supreme-court-scrutiny-3/feed/ 1 8886 Trust accounts representing more than $140 billion in assets under administration https://cuckoosnest.club/trust-accounts-representing-more-than-140-billion-in-assets-under-administration/?utm_source=rss&utm_medium=rss&utm_campaign=trust-accounts-representing-more-than-140-billion-in-assets-under-administration https://cuckoosnest.club/trust-accounts-representing-more-than-140-billion-in-assets-under-administration/#comments Tue, 03 Oct 2023 09:17:00 +0000 https://avvocato.vamtam.com/?p=8883 Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours. As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours? If you...

The post Trust accounts representing more than $140 billion in assets under administration first appeared on Cuckoo's Nest.

The post Trust accounts representing more than $140 billion in assets under administration appeared first on Cuckoo's Nest.

]]>

Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours.

As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours?


If you think you’ll never have to worry about a data security breach, think again. It can happen whether you head up a large firm with an ironclad IT system or a small, local business.


Half of all businesses have already experienced a data security breach and cases continue to rise, yet most business leaders do not have an instant response plan in place. It’s a dangerous risk to take, as a cyber security breach could shut down your operations and have a widespread impact on your employees, customers, board members, and anyone else who’s on record of having interacted with your business.


The very thought might make you uneasy, though that’s not necessarily a bad thing.

“It means you’re on your toes and you’re aware of the problem,” says Andrew Buck, business lawyer at Avvocato Law in Winnipeg.”

Tweet

1. Inventory your data

Inventories aren’t just for tangible goods. All businesses should inventory their data, too.

“How could you possibly understand the extent of the problem if you don’t know what information you have in the first place?” Andrew asks.

2. Develop an incident response plan

It could be a hacker that shuts down your computers or a disgruntled employee selling information to your competitors (fun fact: 22 per cent of breaches come from within a company), but if it happens—you need to know what to do, and quickly.

Contain

“You need to shut off the tap,” says Andrew.

That might mean reaching out to forensic experts or a systemwide reset, but your first job is stopping the flow of any more classified information.

Mitigate

The mitigation phase is where you’ll look at how you can reduce the harm to those who have been affected by the breach. For instance, if the breach involved a leak of financial information, it might mean offering free credit monitoring for a year or two.

Notify

In Canada, you’re required to report privacy breaches or data security incidents that cross a certain threshold—what is known in the legal world as real risk of significant harm. IT professionals, lawyers, and privacy regulators (find details at the Office of the Privacy Commissioner of Canada) can help you determine what that threshold is.

Canada’s privacy law (the Personal Information Protection and Electronic Documents Act, or PIPEDA) specifies that a breach report should be made as soon as feasible, as in—as soon as you get a grip on what happened. You can and should update your reporting as more details come in.

Andrew points to the case of Ashley Madison, a Canadian dating site for those who are married or coupled. It faced a significant security breach in 2015, with user data released to the public by hackers causing significant harm to individuals families and reputation. The Office of the Privacy Commissioner of Canada did a thorough investigation and its report, Andrew says, serves as an example of what is expected in terms of protecting privacy and data security.

3. Practice your incident response plan

Your incident response plan should not be a document that sits in a drawer and collects dust. Practice it, update it, and know it well, so you’re ready to put it into action as soon as you need to.

4. Protect the data you’re entrusted with

If you’re a board member, you may be privy to confidential company information. Andrew suggests seeking resources that provide guidance for boards, such as Canadian Securities Administrators (CSA), the Investment Industry Regulatory Organization of Canada (IIROC) and the Office of the Superintendent of Financial Institutions (OSFI).

5. Understand the threats

Ransomware is software that essentially holds your data hostage until you pay a sum to retrieve it. Still, there’s no guarantee paying that sum will get your data back.

The best thing you can do is to have a data backup and a disaster recovery system ready so you can bring your data back immediately. With ransomware attacks expected to increase by 100 per cent in 2022, it’s important to know how to react should one happen.

6. Train staff

Andrew tells of an email he received from a regular client that read, “Here’s the report you asked for.” He hadn’t requested a report, so he responded to see if the email was legit. The client assured him it was. Andrew then forwarded the email to his company’s IT department and confirmed it was spam. Threats are becoming increasingly sophisticated. Andrew recommends training staff on how to identify threats, using different passwords for different applications, and picking up the phone if there’s uncertainty over an email. Two-factor authentication can weed out threats like the one Andrew experienced.

The post Trust accounts representing more than $140 billion in assets under administration first appeared on Cuckoo's Nest.

The post Trust accounts representing more than $140 billion in assets under administration appeared first on Cuckoo's Nest.

]]> https://cuckoosnest.club/trust-accounts-representing-more-than-140-billion-in-assets-under-administration/feed/ 1 8883 Will the SEC’s proposed climate risk disclosure rules survive Supreme Court scrutiny? https://cuckoosnest.club/will-the-secs-proposed-climate-risk-disclosure-rules-survive-supreme-court-scrutiny-2/?utm_source=rss&utm_medium=rss&utm_campaign=will-the-secs-proposed-climate-risk-disclosure-rules-survive-supreme-court-scrutiny-2 https://cuckoosnest.club/will-the-secs-proposed-climate-risk-disclosure-rules-survive-supreme-court-scrutiny-2/#comments Mon, 05 Dec 2022 08:25:54 +0000 https://avvocato.vamtam.com/?p=125 Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours. As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours? If you...

The post Will the SEC’s proposed climate risk disclosure rules survive Supreme Court scrutiny? first appeared on Cuckoo's Nest.

The post Will the SEC’s proposed climate risk disclosure rules survive Supreme Court scrutiny? appeared first on Cuckoo's Nest.

]]>

Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours.

As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours?


If you think you’ll never have to worry about a data security breach, think again. It can happen whether you head up a large firm with an ironclad IT system or a small, local business.


Half of all businesses have already experienced a data security breach and cases continue to rise, yet most business leaders do not have an instant response plan in place. It’s a dangerous risk to take, as a cyber security breach could shut down your operations and have a widespread impact on your employees, customers, board members, and anyone else who’s on record of having interacted with your business.


The very thought might make you uneasy, though that’s not necessarily a bad thing.

“It means you’re on your toes and you’re aware of the problem,” says Andrew Buck, business lawyer at Avvocato Law in Winnipeg.”

Tweet

1. Inventory your data

Inventories aren’t just for tangible goods. All businesses should inventory their data, too.

“How could you possibly understand the extent of the problem if you don’t know what information you have in the first place?” Andrew asks.

2. Develop an incident response plan

It could be a hacker that shuts down your computers or a disgruntled employee selling information to your competitors (fun fact: 22 per cent of breaches come from within a company), but if it happens—you need to know what to do, and quickly.

Contain

“You need to shut off the tap,” says Andrew.

That might mean reaching out to forensic experts or a systemwide reset, but your first job is stopping the flow of any more classified information.

Mitigate

The mitigation phase is where you’ll look at how you can reduce the harm to those who have been affected by the breach. For instance, if the breach involved a leak of financial information, it might mean offering free credit monitoring for a year or two.

Notify

In Canada, you’re required to report privacy breaches or data security incidents that cross a certain threshold—what is known in the legal world as real risk of significant harm. IT professionals, lawyers, and privacy regulators (find details at the Office of the Privacy Commissioner of Canada) can help you determine what that threshold is.

Canada’s privacy law (the Personal Information Protection and Electronic Documents Act, or PIPEDA) specifies that a breach report should be made as soon as feasible, as in—as soon as you get a grip on what happened. You can and should update your reporting as more details come in.

Andrew points to the case of Ashley Madison, a Canadian dating site for those who are married or coupled. It faced a significant security breach in 2015, with user data released to the public by hackers causing significant harm to individuals families and reputation. The Office of the Privacy Commissioner of Canada did a thorough investigation and its report, Andrew says, serves as an example of what is expected in terms of protecting privacy and data security.

3. Practice your incident response plan

Your incident response plan should not be a document that sits in a drawer and collects dust. Practice it, update it, and know it well, so you’re ready to put it into action as soon as you need to.

4. Protect the data you’re entrusted with

If you’re a board member, you may be privy to confidential company information. Andrew suggests seeking resources that provide guidance for boards, such as Canadian Securities Administrators (CSA), the Investment Industry Regulatory Organization of Canada (IIROC) and the Office of the Superintendent of Financial Institutions (OSFI).

5. Understand the threats

Ransomware is software that essentially holds your data hostage until you pay a sum to retrieve it. Still, there’s no guarantee paying that sum will get your data back.

The best thing you can do is to have a data backup and a disaster recovery system ready so you can bring your data back immediately. With ransomware attacks expected to increase by 100 per cent in 2022, it’s important to know how to react should one happen.

6. Train staff

Andrew tells of an email he received from a regular client that read, “Here’s the report you asked for.” He hadn’t requested a report, so he responded to see if the email was legit. The client assured him it was. Andrew then forwarded the email to his company’s IT department and confirmed it was spam. Threats are becoming increasingly sophisticated. Andrew recommends training staff on how to identify threats, using different passwords for different applications, and picking up the phone if there’s uncertainty over an email. Two-factor authentication can weed out threats like the one Andrew experienced.

The post Will the SEC’s proposed climate risk disclosure rules survive Supreme Court scrutiny? first appeared on Cuckoo's Nest.

The post Will the SEC’s proposed climate risk disclosure rules survive Supreme Court scrutiny? appeared first on Cuckoo's Nest.

]]> https://cuckoosnest.club/will-the-secs-proposed-climate-risk-disclosure-rules-survive-supreme-court-scrutiny-2/feed/ 1 125 Crucial Steps to Protect Your Business from Cyber Threats featuring Jayden Quinn https://cuckoosnest.club/crucial-steps-to-protect-your-business-from-cyber-threats-featuring-jayden-quinn/?utm_source=rss&utm_medium=rss&utm_campaign=crucial-steps-to-protect-your-business-from-cyber-threats-featuring-jayden-quinn https://cuckoosnest.club/crucial-steps-to-protect-your-business-from-cyber-threats-featuring-jayden-quinn/#comments Mon, 05 Dec 2022 08:20:28 +0000 https://avvocato.vamtam.com/?p=6761 Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours. As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours? If you...

The post Crucial Steps to Protect Your Business from Cyber Threats featuring Jayden Quinn first appeared on Cuckoo's Nest.

The post Crucial Steps to Protect Your Business from Cyber Threats featuring Jayden Quinn appeared first on Cuckoo's Nest.

]]>

Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours.

As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours?


If you think you’ll never have to worry about a data security breach, think again. It can happen whether you head up a large firm with an ironclad IT system or a small, local business.


Half of all businesses have already experienced a data security breach and cases continue to rise, yet most business leaders do not have an instant response plan in place. It’s a dangerous risk to take, as a cyber security breach could shut down your operations and have a widespread impact on your employees, customers, board members, and anyone else who’s on record of having interacted with your business.


The very thought might make you uneasy, though that’s not necessarily a bad thing.

“It means you’re on your toes and you’re aware of the problem,” says Andrew Buck, business lawyer at Avvocato Law in Winnipeg.”

Tweet

1. Inventory your data

Inventories aren’t just for tangible goods. All businesses should inventory their data, too.

“How could you possibly understand the extent of the problem if you don’t know what information you have in the first place?” Andrew asks.

2. Develop an incident response plan

It could be a hacker that shuts down your computers or a disgruntled employee selling information to your competitors (fun fact: 22 per cent of breaches come from within a company), but if it happens—you need to know what to do, and quickly.

Contain

“You need to shut off the tap,” says Andrew.

That might mean reaching out to forensic experts or a systemwide reset, but your first job is stopping the flow of any more classified information.

Mitigate

The mitigation phase is where you’ll look at how you can reduce the harm to those who have been affected by the breach. For instance, if the breach involved a leak of financial information, it might mean offering free credit monitoring for a year or two.

Notify

In Canada, you’re required to report privacy breaches or data security incidents that cross a certain threshold—what is known in the legal world as real risk of significant harm. IT professionals, lawyers, and privacy regulators (find details at the Office of the Privacy Commissioner of Canada) can help you determine what that threshold is.

Canada’s privacy law (the Personal Information Protection and Electronic Documents Act, or PIPEDA) specifies that a breach report should be made as soon as feasible, as in—as soon as you get a grip on what happened. You can and should update your reporting as more details come in.

Andrew points to the case of Ashley Madison, a Canadian dating site for those who are married or coupled. It faced a significant security breach in 2015, with user data released to the public by hackers causing significant harm to individuals families and reputation. The Office of the Privacy Commissioner of Canada did a thorough investigation and its report, Andrew says, serves as an example of what is expected in terms of protecting privacy and data security.

3. Practice your incident response plan

Your incident response plan should not be a document that sits in a drawer and collects dust. Practice it, update it, and know it well, so you’re ready to put it into action as soon as you need to.

4. Protect the data you’re entrusted with

If you’re a board member, you may be privy to confidential company information. Andrew suggests seeking resources that provide guidance for boards, such as Canadian Securities Administrators (CSA), the Investment Industry Regulatory Organization of Canada (IIROC) and the Office of the Superintendent of Financial Institutions (OSFI).

5. Understand the threats

Ransomware is software that essentially holds your data hostage until you pay a sum to retrieve it. Still, there’s no guarantee paying that sum will get your data back.

The best thing you can do is to have a data backup and a disaster recovery system ready so you can bring your data back immediately. With ransomware attacks expected to increase by 100 per cent in 2022, it’s important to know how to react should one happen.

6. Train staff

Andrew tells of an email he received from a regular client that read, “Here’s the report you asked for.” He hadn’t requested a report, so he responded to see if the email was legit. The client assured him it was. Andrew then forwarded the email to his company’s IT department and confirmed it was spam. Threats are becoming increasingly sophisticated. Andrew recommends training staff on how to identify threats, using different passwords for different applications, and picking up the phone if there’s uncertainty over an email. Two-factor authentication can weed out threats like the one Andrew experienced.

The post Crucial Steps to Protect Your Business from Cyber Threats featuring Jayden Quinn first appeared on Cuckoo's Nest.

The post Crucial Steps to Protect Your Business from Cyber Threats featuring Jayden Quinn appeared first on Cuckoo's Nest.

]]> https://cuckoosnest.club/crucial-steps-to-protect-your-business-from-cyber-threats-featuring-jayden-quinn/feed/ 1 6761 Nine Avvocato Partners named as Leading Practitioners in the 2022 USA Legal Lexpert Directory https://cuckoosnest.club/nine-avvocato-partners-named-as-leading-practitioners-in-the-2022-usa-legal-lexpert-directory/?utm_source=rss&utm_medium=rss&utm_campaign=nine-avvocato-partners-named-as-leading-practitioners-in-the-2022-usa-legal-lexpert-directory https://cuckoosnest.club/nine-avvocato-partners-named-as-leading-practitioners-in-the-2022-usa-legal-lexpert-directory/#comments Mon, 05 Dec 2022 08:17:21 +0000 https://avvocato.vamtam.com/?p=6767 Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours. As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours? If you...

The post Nine Avvocato Partners named as Leading Practitioners in the 2022 USA Legal Lexpert Directory first appeared on Cuckoo's Nest.

The post Nine Avvocato Partners named as Leading Practitioners in the 2022 USA Legal Lexpert Directory appeared first on Cuckoo's Nest.

]]>

Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours.

As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours?


If you think you’ll never have to worry about a data security breach, think again. It can happen whether you head up a large firm with an ironclad IT system or a small, local business.


Half of all businesses have already experienced a data security breach and cases continue to rise, yet most business leaders do not have an instant response plan in place. It’s a dangerous risk to take, as a cyber security breach could shut down your operations and have a widespread impact on your employees, customers, board members, and anyone else who’s on record of having interacted with your business.


The very thought might make you uneasy, though that’s not necessarily a bad thing.

“It means you’re on your toes and you’re aware of the problem,” says Andrew Buck, business lawyer at Avvocato Law in Winnipeg.”

Tweet

1. Inventory your data

Inventories aren’t just for tangible goods. All businesses should inventory their data, too.

“How could you possibly understand the extent of the problem if you don’t know what information you have in the first place?” Andrew asks.

2. Develop an incident response plan

It could be a hacker that shuts down your computers or a disgruntled employee selling information to your competitors (fun fact: 22 per cent of breaches come from within a company), but if it happens—you need to know what to do, and quickly.

Contain

“You need to shut off the tap,” says Andrew.

That might mean reaching out to forensic experts or a systemwide reset, but your first job is stopping the flow of any more classified information.

Mitigate

The mitigation phase is where you’ll look at how you can reduce the harm to those who have been affected by the breach. For instance, if the breach involved a leak of financial information, it might mean offering free credit monitoring for a year or two.

Notify

In Canada, you’re required to report privacy breaches or data security incidents that cross a certain threshold—what is known in the legal world as real risk of significant harm. IT professionals, lawyers, and privacy regulators (find details at the Office of the Privacy Commissioner of Canada) can help you determine what that threshold is.

Canada’s privacy law (the Personal Information Protection and Electronic Documents Act, or PIPEDA) specifies that a breach report should be made as soon as feasible, as in—as soon as you get a grip on what happened. You can and should update your reporting as more details come in.

Andrew points to the case of Ashley Madison, a Canadian dating site for those who are married or coupled. It faced a significant security breach in 2015, with user data released to the public by hackers causing significant harm to individuals families and reputation. The Office of the Privacy Commissioner of Canada did a thorough investigation and its report, Andrew says, serves as an example of what is expected in terms of protecting privacy and data security.

3. Practice your incident response plan

Your incident response plan should not be a document that sits in a drawer and collects dust. Practice it, update it, and know it well, so you’re ready to put it into action as soon as you need to.

4. Protect the data you’re entrusted with

If you’re a board member, you may be privy to confidential company information. Andrew suggests seeking resources that provide guidance for boards, such as Canadian Securities Administrators (CSA), the Investment Industry Regulatory Organization of Canada (IIROC) and the Office of the Superintendent of Financial Institutions (OSFI).

5. Understand the threats

Ransomware is software that essentially holds your data hostage until you pay a sum to retrieve it. Still, there’s no guarantee paying that sum will get your data back.

The best thing you can do is to have a data backup and a disaster recovery system ready so you can bring your data back immediately. With ransomware attacks expected to increase by 100 per cent in 2022, it’s important to know how to react should one happen.

6. Train staff

Andrew tells of an email he received from a regular client that read, “Here’s the report you asked for.” He hadn’t requested a report, so he responded to see if the email was legit. The client assured him it was. Andrew then forwarded the email to his company’s IT department and confirmed it was spam. Threats are becoming increasingly sophisticated. Andrew recommends training staff on how to identify threats, using different passwords for different applications, and picking up the phone if there’s uncertainty over an email. Two-factor authentication can weed out threats like the one Andrew experienced.

The post Nine Avvocato Partners named as Leading Practitioners in the 2022 USA Legal Lexpert Directory first appeared on Cuckoo's Nest.

The post Nine Avvocato Partners named as Leading Practitioners in the 2022 USA Legal Lexpert Directory appeared first on Cuckoo's Nest.

]]> https://cuckoosnest.club/nine-avvocato-partners-named-as-leading-practitioners-in-the-2022-usa-legal-lexpert-directory/feed/ 1 6767 Why Falls from Heights Are the Number One Hazard For New York City Construction Workers https://cuckoosnest.club/why-falls-from-heights-are-the-number-one-hazard-for-new-york-city-construction-workers/?utm_source=rss&utm_medium=rss&utm_campaign=why-falls-from-heights-are-the-number-one-hazard-for-new-york-city-construction-workers https://cuckoosnest.club/why-falls-from-heights-are-the-number-one-hazard-for-new-york-city-construction-workers/#comments Mon, 05 Dec 2022 08:15:41 +0000 https://avvocato.vamtam.com/?p=129 Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours. As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours? If you...

The post Why Falls from Heights Are the Number One Hazard For New York City Construction Workers first appeared on Cuckoo's Nest.

The post Why Falls from Heights Are the Number One Hazard For New York City Construction Workers appeared first on Cuckoo's Nest.

]]>

Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours.

As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours?


If you think you’ll never have to worry about a data security breach, think again. It can happen whether you head up a large firm with an ironclad IT system or a small, local business.


Half of all businesses have already experienced a data security breach and cases continue to rise, yet most business leaders do not have an instant response plan in place. It’s a dangerous risk to take, as a cyber security breach could shut down your operations and have a widespread impact on your employees, customers, board members, and anyone else who’s on record of having interacted with your business.


The very thought might make you uneasy, though that’s not necessarily a bad thing.

“It means you’re on your toes and you’re aware of the problem,” says Andrew Buck, business lawyer at Avvocato Law in Winnipeg.”

Tweet

1. Inventory your data

Inventories aren’t just for tangible goods. All businesses should inventory their data, too.

“How could you possibly understand the extent of the problem if you don’t know what information you have in the first place?” Andrew asks.

2. Develop an incident response plan

It could be a hacker that shuts down your computers or a disgruntled employee selling information to your competitors (fun fact: 22 per cent of breaches come from within a company), but if it happens—you need to know what to do, and quickly.

Contain

“You need to shut off the tap,” says Andrew.

That might mean reaching out to forensic experts or a systemwide reset, but your first job is stopping the flow of any more classified information.

Mitigate

The mitigation phase is where you’ll look at how you can reduce the harm to those who have been affected by the breach. For instance, if the breach involved a leak of financial information, it might mean offering free credit monitoring for a year or two.

Notify

In Canada, you’re required to report privacy breaches or data security incidents that cross a certain threshold—what is known in the legal world as real risk of significant harm. IT professionals, lawyers, and privacy regulators (find details at the Office of the Privacy Commissioner of Canada) can help you determine what that threshold is.

Canada’s privacy law (the Personal Information Protection and Electronic Documents Act, or PIPEDA) specifies that a breach report should be made as soon as feasible, as in—as soon as you get a grip on what happened. You can and should update your reporting as more details come in.

Andrew points to the case of Ashley Madison, a Canadian dating site for those who are married or coupled. It faced a significant security breach in 2015, with user data released to the public by hackers causing significant harm to individuals families and reputation. The Office of the Privacy Commissioner of Canada did a thorough investigation and its report, Andrew says, serves as an example of what is expected in terms of protecting privacy and data security.

3. Practice your incident response plan

Your incident response plan should not be a document that sits in a drawer and collects dust. Practice it, update it, and know it well, so you’re ready to put it into action as soon as you need to.

4. Protect the data you’re entrusted with

If you’re a board member, you may be privy to confidential company information. Andrew suggests seeking resources that provide guidance for boards, such as Canadian Securities Administrators (CSA), the Investment Industry Regulatory Organization of Canada (IIROC) and the Office of the Superintendent of Financial Institutions (OSFI).

5. Understand the threats

Ransomware is software that essentially holds your data hostage until you pay a sum to retrieve it. Still, there’s no guarantee paying that sum will get your data back.

The best thing you can do is to have a data backup and a disaster recovery system ready so you can bring your data back immediately. With ransomware attacks expected to increase by 100 per cent in 2022, it’s important to know how to react should one happen.

6. Train staff

Andrew tells of an email he received from a regular client that read, “Here’s the report you asked for.” He hadn’t requested a report, so he responded to see if the email was legit. The client assured him it was. Andrew then forwarded the email to his company’s IT department and confirmed it was spam. Threats are becoming increasingly sophisticated. Andrew recommends training staff on how to identify threats, using different passwords for different applications, and picking up the phone if there’s uncertainty over an email. Two-factor authentication can weed out threats like the one Andrew experienced.

The post Why Falls from Heights Are the Number One Hazard For New York City Construction Workers first appeared on Cuckoo's Nest.

The post Why Falls from Heights Are the Number One Hazard For New York City Construction Workers appeared first on Cuckoo's Nest.

]]> https://cuckoosnest.club/why-falls-from-heights-are-the-number-one-hazard-for-new-york-city-construction-workers/feed/ 1 129 A Personal Connection to Brain Tumour Awareness Month https://cuckoosnest.club/a-personal-connection-to-brain-tumour-awareness-month/?utm_source=rss&utm_medium=rss&utm_campaign=a-personal-connection-to-brain-tumour-awareness-month https://cuckoosnest.club/a-personal-connection-to-brain-tumour-awareness-month/#comments Mon, 05 Dec 2022 08:10:45 +0000 https://avvocato.vamtam.com/?p=6763 Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours. As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours? If you...

The post A Personal Connection to Brain Tumour Awareness Month first appeared on Cuckoo's Nest.

The post A Personal Connection to Brain Tumour Awareness Month appeared first on Cuckoo's Nest.

]]>

Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours.

As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours?


If you think you’ll never have to worry about a data security breach, think again. It can happen whether you head up a large firm with an ironclad IT system or a small, local business.


Half of all businesses have already experienced a data security breach and cases continue to rise, yet most business leaders do not have an instant response plan in place. It’s a dangerous risk to take, as a cyber security breach could shut down your operations and have a widespread impact on your employees, customers, board members, and anyone else who’s on record of having interacted with your business.


The very thought might make you uneasy, though that’s not necessarily a bad thing.

“It means you’re on your toes and you’re aware of the problem,” says Andrew Buck, business lawyer at Avvocato Law in Winnipeg.”

Tweet

1. Inventory your data

Inventories aren’t just for tangible goods. All businesses should inventory their data, too.

“How could you possibly understand the extent of the problem if you don’t know what information you have in the first place?” Andrew asks.

2. Develop an incident response plan

It could be a hacker that shuts down your computers or a disgruntled employee selling information to your competitors (fun fact: 22 per cent of breaches come from within a company), but if it happens—you need to know what to do, and quickly.

Contain

“You need to shut off the tap,” says Andrew.

That might mean reaching out to forensic experts or a systemwide reset, but your first job is stopping the flow of any more classified information.

Mitigate

The mitigation phase is where you’ll look at how you can reduce the harm to those who have been affected by the breach. For instance, if the breach involved a leak of financial information, it might mean offering free credit monitoring for a year or two.

Notify

In Canada, you’re required to report privacy breaches or data security incidents that cross a certain threshold—what is known in the legal world as real risk of significant harm. IT professionals, lawyers, and privacy regulators (find details at the Office of the Privacy Commissioner of Canada) can help you determine what that threshold is.

Canada’s privacy law (the Personal Information Protection and Electronic Documents Act, or PIPEDA) specifies that a breach report should be made as soon as feasible, as in—as soon as you get a grip on what happened. You can and should update your reporting as more details come in.

Andrew points to the case of Ashley Madison, a Canadian dating site for those who are married or coupled. It faced a significant security breach in 2015, with user data released to the public by hackers causing significant harm to individuals families and reputation. The Office of the Privacy Commissioner of Canada did a thorough investigation and its report, Andrew says, serves as an example of what is expected in terms of protecting privacy and data security.

3. Practice your incident response plan

Your incident response plan should not be a document that sits in a drawer and collects dust. Practice it, update it, and know it well, so you’re ready to put it into action as soon as you need to.

4. Protect the data you’re entrusted with

If you’re a board member, you may be privy to confidential company information. Andrew suggests seeking resources that provide guidance for boards, such as Canadian Securities Administrators (CSA), the Investment Industry Regulatory Organization of Canada (IIROC) and the Office of the Superintendent of Financial Institutions (OSFI).

5. Understand the threats

Ransomware is software that essentially holds your data hostage until you pay a sum to retrieve it. Still, there’s no guarantee paying that sum will get your data back.

The best thing you can do is to have a data backup and a disaster recovery system ready so you can bring your data back immediately. With ransomware attacks expected to increase by 100 per cent in 2022, it’s important to know how to react should one happen.

6. Train staff

Andrew tells of an email he received from a regular client that read, “Here’s the report you asked for.” He hadn’t requested a report, so he responded to see if the email was legit. The client assured him it was. Andrew then forwarded the email to his company’s IT department and confirmed it was spam. Threats are becoming increasingly sophisticated. Andrew recommends training staff on how to identify threats, using different passwords for different applications, and picking up the phone if there’s uncertainty over an email. Two-factor authentication can weed out threats like the one Andrew experienced.

The post A Personal Connection to Brain Tumour Awareness Month first appeared on Cuckoo's Nest.

The post A Personal Connection to Brain Tumour Awareness Month appeared first on Cuckoo's Nest.

]]> https://cuckoosnest.club/a-personal-connection-to-brain-tumour-awareness-month/feed/ 1 6763 Questions about Mandatory Vaccination in the Workplace? https://cuckoosnest.club/questions-about-mandatory-vaccination-in-the-workplace/?utm_source=rss&utm_medium=rss&utm_campaign=questions-about-mandatory-vaccination-in-the-workplace https://cuckoosnest.club/questions-about-mandatory-vaccination-in-the-workplace/#comments Mon, 05 Dec 2022 08:06:41 +0000 https://avvocato.vamtam.com/?p=6769 Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours. As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours? If you...

The post Questions about Mandatory Vaccination in the Workplace? first appeared on Cuckoo's Nest.

The post Questions about Mandatory Vaccination in the Workplace? appeared first on Cuckoo's Nest.

]]>

Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours.

As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours?


If you think you’ll never have to worry about a data security breach, think again. It can happen whether you head up a large firm with an ironclad IT system or a small, local business.


Half of all businesses have already experienced a data security breach and cases continue to rise, yet most business leaders do not have an instant response plan in place. It’s a dangerous risk to take, as a cyber security breach could shut down your operations and have a widespread impact on your employees, customers, board members, and anyone else who’s on record of having interacted with your business.


The very thought might make you uneasy, though that’s not necessarily a bad thing.

“It means you’re on your toes and you’re aware of the problem,” says Andrew Buck, business lawyer at Avvocato Law in Winnipeg.”

Tweet

1. Inventory your data

Inventories aren’t just for tangible goods. All businesses should inventory their data, too.

“How could you possibly understand the extent of the problem if you don’t know what information you have in the first place?” Andrew asks.

2. Develop an incident response plan

It could be a hacker that shuts down your computers or a disgruntled employee selling information to your competitors (fun fact: 22 per cent of breaches come from within a company), but if it happens—you need to know what to do, and quickly.

Contain

“You need to shut off the tap,” says Andrew.

That might mean reaching out to forensic experts or a systemwide reset, but your first job is stopping the flow of any more classified information.

Mitigate

The mitigation phase is where you’ll look at how you can reduce the harm to those who have been affected by the breach. For instance, if the breach involved a leak of financial information, it might mean offering free credit monitoring for a year or two.

Notify

In Canada, you’re required to report privacy breaches or data security incidents that cross a certain threshold—what is known in the legal world as real risk of significant harm. IT professionals, lawyers, and privacy regulators (find details at the Office of the Privacy Commissioner of Canada) can help you determine what that threshold is.

Canada’s privacy law (the Personal Information Protection and Electronic Documents Act, or PIPEDA) specifies that a breach report should be made as soon as feasible, as in—as soon as you get a grip on what happened. You can and should update your reporting as more details come in.

Andrew points to the case of Ashley Madison, a Canadian dating site for those who are married or coupled. It faced a significant security breach in 2015, with user data released to the public by hackers causing significant harm to individuals families and reputation. The Office of the Privacy Commissioner of Canada did a thorough investigation and its report, Andrew says, serves as an example of what is expected in terms of protecting privacy and data security.

3. Practice your incident response plan

Your incident response plan should not be a document that sits in a drawer and collects dust. Practice it, update it, and know it well, so you’re ready to put it into action as soon as you need to.

4. Protect the data you’re entrusted with

If you’re a board member, you may be privy to confidential company information. Andrew suggests seeking resources that provide guidance for boards, such as Canadian Securities Administrators (CSA), the Investment Industry Regulatory Organization of Canada (IIROC) and the Office of the Superintendent of Financial Institutions (OSFI).

5. Understand the threats

Ransomware is software that essentially holds your data hostage until you pay a sum to retrieve it. Still, there’s no guarantee paying that sum will get your data back.

The best thing you can do is to have a data backup and a disaster recovery system ready so you can bring your data back immediately. With ransomware attacks expected to increase by 100 per cent in 2022, it’s important to know how to react should one happen.

6. Train staff

Andrew tells of an email he received from a regular client that read, “Here’s the report you asked for.” He hadn’t requested a report, so he responded to see if the email was legit. The client assured him it was. Andrew then forwarded the email to his company’s IT department and confirmed it was spam. Threats are becoming increasingly sophisticated. Andrew recommends training staff on how to identify threats, using different passwords for different applications, and picking up the phone if there’s uncertainty over an email. Two-factor authentication can weed out threats like the one Andrew experienced.

The post Questions about Mandatory Vaccination in the Workplace? first appeared on Cuckoo's Nest.

The post Questions about Mandatory Vaccination in the Workplace? appeared first on Cuckoo's Nest.

]]> https://cuckoosnest.club/questions-about-mandatory-vaccination-in-the-workplace/feed/ 1 6769 Remember the Umbrella, it might just start “raining liens”: An action by one is a benefit for all https://cuckoosnest.club/remember-the-umbrella-it-might-just-start-raining-liens-an-action-by-one-is-a-benefit-for-all/?utm_source=rss&utm_medium=rss&utm_campaign=remember-the-umbrella-it-might-just-start-raining-liens-an-action-by-one-is-a-benefit-for-all https://cuckoosnest.club/remember-the-umbrella-it-might-just-start-raining-liens-an-action-by-one-is-a-benefit-for-all/#comments Mon, 05 Dec 2022 08:01:02 +0000 https://avvocato.vamtam.com/?p=6765 Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours. As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours? If you...

The post Remember the Umbrella, it might just start “raining liens”: An action by one is a benefit for all first appeared on Cuckoo's Nest.

The post Remember the Umbrella, it might just start “raining liens”: An action by one is a benefit for all appeared first on Cuckoo's Nest.

]]>

Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours.

As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours?


If you think you’ll never have to worry about a data security breach, think again. It can happen whether you head up a large firm with an ironclad IT system or a small, local business.


Half of all businesses have already experienced a data security breach and cases continue to rise, yet most business leaders do not have an instant response plan in place. It’s a dangerous risk to take, as a cyber security breach could shut down your operations and have a widespread impact on your employees, customers, board members, and anyone else who’s on record of having interacted with your business.


The very thought might make you uneasy, though that’s not necessarily a bad thing.

“It means you’re on your toes and you’re aware of the problem,” says Andrew Buck, business lawyer at Avvocato Law in Winnipeg.”

Tweet

1. Inventory your data

Inventories aren’t just for tangible goods. All businesses should inventory their data, too.

“How could you possibly understand the extent of the problem if you don’t know what information you have in the first place?” Andrew asks.

2. Develop an incident response plan

It could be a hacker that shuts down your computers or a disgruntled employee selling information to your competitors (fun fact: 22 per cent of breaches come from within a company), but if it happens—you need to know what to do, and quickly.

Contain

“You need to shut off the tap,” says Andrew.

That might mean reaching out to forensic experts or a systemwide reset, but your first job is stopping the flow of any more classified information.

Mitigate

The mitigation phase is where you’ll look at how you can reduce the harm to those who have been affected by the breach. For instance, if the breach involved a leak of financial information, it might mean offering free credit monitoring for a year or two.

Notify

In Canada, you’re required to report privacy breaches or data security incidents that cross a certain threshold—what is known in the legal world as real risk of significant harm. IT professionals, lawyers, and privacy regulators (find details at the Office of the Privacy Commissioner of Canada) can help you determine what that threshold is.

Canada’s privacy law (the Personal Information Protection and Electronic Documents Act, or PIPEDA) specifies that a breach report should be made as soon as feasible, as in—as soon as you get a grip on what happened. You can and should update your reporting as more details come in.

Andrew points to the case of Ashley Madison, a Canadian dating site for those who are married or coupled. It faced a significant security breach in 2015, with user data released to the public by hackers causing significant harm to individuals families and reputation. The Office of the Privacy Commissioner of Canada did a thorough investigation and its report, Andrew says, serves as an example of what is expected in terms of protecting privacy and data security.

3. Practice your incident response plan

Your incident response plan should not be a document that sits in a drawer and collects dust. Practice it, update it, and know it well, so you’re ready to put it into action as soon as you need to.

4. Protect the data you’re entrusted with

If you’re a board member, you may be privy to confidential company information. Andrew suggests seeking resources that provide guidance for boards, such as Canadian Securities Administrators (CSA), the Investment Industry Regulatory Organization of Canada (IIROC) and the Office of the Superintendent of Financial Institutions (OSFI).

5. Understand the threats

Ransomware is software that essentially holds your data hostage until you pay a sum to retrieve it. Still, there’s no guarantee paying that sum will get your data back.

The best thing you can do is to have a data backup and a disaster recovery system ready so you can bring your data back immediately. With ransomware attacks expected to increase by 100 per cent in 2022, it’s important to know how to react should one happen.

6. Train staff

Andrew tells of an email he received from a regular client that read, “Here’s the report you asked for.” He hadn’t requested a report, so he responded to see if the email was legit. The client assured him it was. Andrew then forwarded the email to his company’s IT department and confirmed it was spam. Threats are becoming increasingly sophisticated. Andrew recommends training staff on how to identify threats, using different passwords for different applications, and picking up the phone if there’s uncertainty over an email. Two-factor authentication can weed out threats like the one Andrew experienced.

The post Remember the Umbrella, it might just start “raining liens”: An action by one is a benefit for all first appeared on Cuckoo's Nest.

The post Remember the Umbrella, it might just start “raining liens”: An action by one is a benefit for all appeared first on Cuckoo's Nest.

]]> https://cuckoosnest.club/remember-the-umbrella-it-might-just-start-raining-liens-an-action-by-one-is-a-benefit-for-all/feed/ 1 6765 Adam Gardner’s Interview: COVID-19 Questions linger over vaccinations for Manitobaw employees https://cuckoosnest.club/adam-gardners-interview-covid-19-questions-linger-over-vaccinations-for-manitobaw-employees/?utm_source=rss&utm_medium=rss&utm_campaign=adam-gardners-interview-covid-19-questions-linger-over-vaccinations-for-manitobaw-employees https://cuckoosnest.club/adam-gardners-interview-covid-19-questions-linger-over-vaccinations-for-manitobaw-employees/#comments Mon, 05 Dec 2022 08:00:00 +0000 https://avvocato.vamtam.com/?p=6771 Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours. As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours? If you...

The post Adam Gardner’s Interview: COVID-19 Questions linger over vaccinations for Manitobaw employees first appeared on Cuckoo's Nest.

The post Adam Gardner’s Interview: COVID-19 Questions linger over vaccinations for Manitobaw employees appeared first on Cuckoo's Nest.

]]>

Business lawyer Jayden Quinn speaks about how to prevent and manage the data security breaches that plague so many businesses. Tune in to the full podcast to learn how to protect yours.

As Forbes states, a business’ second most valuable asset, next to its people, is its data. How are you protecting yours?


If you think you’ll never have to worry about a data security breach, think again. It can happen whether you head up a large firm with an ironclad IT system or a small, local business.


Half of all businesses have already experienced a data security breach and cases continue to rise, yet most business leaders do not have an instant response plan in place. It’s a dangerous risk to take, as a cyber security breach could shut down your operations and have a widespread impact on your employees, customers, board members, and anyone else who’s on record of having interacted with your business.


The very thought might make you uneasy, though that’s not necessarily a bad thing.

“It means you’re on your toes and you’re aware of the problem,” says Andrew Buck, business lawyer at Avvocato Law in Winnipeg.”

Tweet

1. Inventory your data

Inventories aren’t just for tangible goods. All businesses should inventory their data, too.

“How could you possibly understand the extent of the problem if you don’t know what information you have in the first place?” Andrew asks.

2. Develop an incident response plan

It could be a hacker that shuts down your computers or a disgruntled employee selling information to your competitors (fun fact: 22 per cent of breaches come from within a company), but if it happens—you need to know what to do, and quickly.

Contain

“You need to shut off the tap,” says Andrew.

That might mean reaching out to forensic experts or a systemwide reset, but your first job is stopping the flow of any more classified information.

Mitigate

The mitigation phase is where you’ll look at how you can reduce the harm to those who have been affected by the breach. For instance, if the breach involved a leak of financial information, it might mean offering free credit monitoring for a year or two.

Notify

In Canada, you’re required to report privacy breaches or data security incidents that cross a certain threshold—what is known in the legal world as real risk of significant harm. IT professionals, lawyers, and privacy regulators (find details at the Office of the Privacy Commissioner of Canada) can help you determine what that threshold is.

Canada’s privacy law (the Personal Information Protection and Electronic Documents Act, or PIPEDA) specifies that a breach report should be made as soon as feasible, as in—as soon as you get a grip on what happened. You can and should update your reporting as more details come in.

Andrew points to the case of Ashley Madison, a Canadian dating site for those who are married or coupled. It faced a significant security breach in 2015, with user data released to the public by hackers causing significant harm to individuals families and reputation. The Office of the Privacy Commissioner of Canada did a thorough investigation and its report, Andrew says, serves as an example of what is expected in terms of protecting privacy and data security.

3. Practice your incident response plan

Your incident response plan should not be a document that sits in a drawer and collects dust. Practice it, update it, and know it well, so you’re ready to put it into action as soon as you need to.

4. Protect the data you’re entrusted with

If you’re a board member, you may be privy to confidential company information. Andrew suggests seeking resources that provide guidance for boards, such as Canadian Securities Administrators (CSA), the Investment Industry Regulatory Organization of Canada (IIROC) and the Office of the Superintendent of Financial Institutions (OSFI).

5. Understand the threats

Ransomware is software that essentially holds your data hostage until you pay a sum to retrieve it. Still, there’s no guarantee paying that sum will get your data back.

The best thing you can do is to have a data backup and a disaster recovery system ready so you can bring your data back immediately. With ransomware attacks expected to increase by 100 per cent in 2022, it’s important to know how to react should one happen.

6. Train staff

Andrew tells of an email he received from a regular client that read, “Here’s the report you asked for.” He hadn’t requested a report, so he responded to see if the email was legit. The client assured him it was. Andrew then forwarded the email to his company’s IT department and confirmed it was spam. Threats are becoming increasingly sophisticated. Andrew recommends training staff on how to identify threats, using different passwords for different applications, and picking up the phone if there’s uncertainty over an email. Two-factor authentication can weed out threats like the one Andrew experienced.

The post Adam Gardner’s Interview: COVID-19 Questions linger over vaccinations for Manitobaw employees first appeared on Cuckoo's Nest.

The post Adam Gardner’s Interview: COVID-19 Questions linger over vaccinations for Manitobaw employees appeared first on Cuckoo's Nest.

]]> https://cuckoosnest.club/adam-gardners-interview-covid-19-questions-linger-over-vaccinations-for-manitobaw-employees/feed/ 1 6771