HB Risk Notes Archives

Setting the record straight on cyber insurance claim denials and the ‘war exclusion’

July 22nd, 2019|Categories: HB Risk Notes, Insurance, Technology Law|Tags: Cybersecurity, Data Breach, Insurance, Risk Management|

Is insurance coverage for cyber claims barred by a war exclusion? Judy Selby and Peter McLaughlin asked this question in a recent post for IAPP. Two corporate giants, Mondelez International and Merck, made the headlines recently as they sustained serious damage as a result of a NotPetya infection, an encrypting ransomware. They have each filed declaratory judgments after their carriers denied their claims. Reports of these insurance disputes have led to concerns that cyber incidents involving state actors would not be covered by cyber policies with war exclusions. The Verizon 2019 Data Breach Investigations Report attributes 23% of breaches to nation-states or state-affiliated players. "These state-sponsored attacks typically range from theft or espionage to financial gain; however, some attacks appear to have been driven by grudge or by swatting a neighbor," Selby and McLaughlin write. "[P]erhaps we are viewing this through an old lens. Insurance has often been purchased to address hazards. Specifically, an organization obtains a policy to counter the slim risk of a fire, flood or other catastrophe. Fred Kaplan wrote an article for Slate in April in which he argues the inevitability of attacks – state-sponsored or otherwise – means that we should view cyber insurance more like we do health insurance: coverage against the inevitable, rather than against a hazard risk." Read on for what else Selby [...]

PTSD in Multi-Plaintiff and Mass Tort Cases | Webinar OnDemand
Gallery
PTSD in Multi-Plaintiff and Mass Tort Cases | Webinar OnDemand

PTSD in Multi-Plaintiff and Mass Tort Cases | Webinar OnDemand

July 19th, 2019|Categories: Class Actions, Complex Business Litigation, Employment, HB Risk Notes, Mass Torts|Tags: Expert Witnesses, Healthcare, Litigation & appeals, PTSD, Risk Management|

[one-fourth-first] Price: $47 When: On-demand Where: Your computer or mobile device CLE: 1 hour Speakers Mark I. Levy MD, DLFAPA Medical Director Forensic Psychiatric Associates Medical Corporation Associate Clinical Professor, Psychiatry University of California, San Francisco, School of Medicine 415.388.8040 mlevy@fpamed.com Sarah A. Hall, PhD. Psychologist for Forensic & Neuropsychological Assessments Forensic Psychiatric Associates Medical Corporation shall@fpamed.com [/one-fourth-first][three-fourths] What tort attorneys need to know about PTSD claims. Mass tort claims arise most frequently in man-made and natural disaster catastrophe litigation as well as personal injury, employment, product liability and toxic tort litigation. Frequently, these lawsuits include either primary or secondary allegations of emotional distress. PTSD is one of the most common emotional distress claims alleged within mass tort litigation, as well as allegations of depression and emotional stress (anxiety). Join an experienced psychiatrist and psychologist who will cover the following topics relevant to the forensic psychiatric assessment of emotional damages within mass tort and complex litigation: + Introduction: Defining PTSD. What it is and what it is not. + The methodological approach to assessing allegations of emotional distress in mass tort & complex litigation. + The importance and the methodology of psychological testing as part of the assessment of emotional distress claims in mass tort litigation. + Claimant population screening. Using psychological test instruments to differentiate claimants who [...]

Cyber Captive Survey 2019 — AON

June 26th, 2019|Categories: HB Risk Notes, Insurance, Technology Law|Tags: Cybersecurity, Data Breach, Data Privacy, Insurance Companies, Risk Management|

Aon’s Cyber Captive Survey 2019 says that the rapid growth in the captive market of cyber-specific policies underscores that cyber is one of the primary risks for organizations across the world driven by an increasingly complex operational, technological and regulatory environment. Key findings include: Healthcare and energy industries are leading the way, with 19% and 15% of organizations in these industries utilizing captives for cyber coverage respectively. 41% of captives surveyed are incubating cyber risk. The range in limits of cover taken out is up to USD$100 million. An estimated 34% of all captives will be writing cyber in five years’ time. Read the complete report here!

Nevada to try limited banking for cash-heavy pot industry — ElkoDaily.com

June 26th, 2019|Categories: Corporate Compliance, HB Risk Notes, Technology Law|Tags: Banking & Finance, Cannabis, Compliance, Drug Laws, Regulations|

Most marijuana dispensaries are forced to handle massive amounts of cash. Business owners are paying their employees with envelopes full of dollar bills, and bringing duffle bags full of money to government buildings to pay their taxes. That could all change with the new Nevada state law that allows dispensaries to offer a cashless option. This program will be tested for three years before being considered as a permanent feature. State Treasurer Zach Conine likened the system to gift cards or digital apps such as Venmo and said the program would not include broader banking services like loans. Since marijuana is still not legal federally, states are on their own with coming up with a cashless option. Hawaii took similar steps and included a debit payment app, which has spread to other states as well. California lawmakers are also devising a cashless system by creating a class of banks specifically for the industry. This temporary law is set to take place by July 1, 2020 with the hopes of easing transactions and lessen cash handling for customers and businesses Read the complete post by Michelle L. Price on ElkoDaily.com here!

First Class Action Lawsuit Filed on Behalf of Victims of First American Title Company Data Breach — Yahoo!

June 26th, 2019|Categories: Class Actions, HB Risk Notes, Technology Law|Tags: Compliance, Cybersecurity, Data Breach, Data Privacy|

"Gibbs Law Group LLP has filed the first nationwide class action lawsuit accusing First American Title Company of failing to properly secure 885 million sensitive customer files, instead choosing to store them in a 'woefully insecure,'” publicly-accessible system. “First American has turned the American dream of home ownership into a financial security nightmare for its customers,” according to the complaint. Specifically, the lawsuit alleges that First American Title Company was negligent, and violated its contracts with customers, in the way it stored their personal information, which included bank account numbers, Social Security numbers, financial and tax records, and photos of their drivers’ licenses. "This grave lapse in security resulted in publicly exposing hundreds of millions of customers’ personal files, leaving them vulnerable to identify theft and other cybercrimes," the plaintiffs maintain. Read the complete Press Release on Yahoo! here

Wells Fargo Proposes to Settle Auto Insurance Case for $386M — Yahoo!

June 26th, 2019|Categories: Class Actions, Complex Business Litigation, Corporate Compliance, HB Risk Notes, Insurance|Tags: Banking & Finance, Compliance, Insurance Companies, Settlements|

In 2017 customers of Wells Fargo & Company (WFC) filed a class action lawsuit alleging the bank forced unwanted auto insurance without permission from the customers. Currently WFC plans to pay around $386 million to settle the 2017 class action lawsuit. The high payout is due to the sheer number of customers affected. About 270,000 WFC customers were "pushed into delinquency " and "almost 25,000 wrongful vehicle repossessions." In addition to the class action settlement, WFC will be reaching out to individual customers offering financial service recovery, and restructuring their leadership teams. WFC is still seeing a decrease in sales and their numbers. In six months WFC shares "lost 4.5% against 6.5% growth recorded by the industry." Read the complete post on Yahoo! here.

The Future of Cyber Operations and the Government

June 7th, 2019|Categories: Corporate Compliance, HB Risk Notes, Technology Law|Tags: Compliance, Constitutional Law, Critical Infrastructure, Cybersecurity, Emerging Litigation & Risk|

In the forthcoming National Defense Authorization Act the House Armed Services Committee -- specifically the Subcommittee on Intelligence and Emerging Threat Capabilities -- seeks to amend the annual legislation to ensure that Congress is informed when the executive branch executes offensive or defensive cyber operations. The bill defines offensive or defensive cyber operations as a “sensitive military operation.” The goal of this shared information is additional oversight, especially given the newness of cyber tactics. As reported by journalist Derek B. Johnson of FWC.com, two covert cyber operations have taken place since POTUS announced the new policy. The first was in October 2018, a cyber operation with a goal of informing Russian operatives not to meddle with the midterm election. The second took place the following November in which the U.S. Cyber Command blocked access to Russian Internet Research Agency post election. While these two operations have been called “mild” in some critiques, former White House Director of Cyber Infrastructure Protection under President George W. Bush, Jason Healey, believes this highly specialized tactic is ideal since it presents the least potential for collateral damage. While Healey warns against grand and overt attacks, he states that sometimes "conflict is straightforward and you just have to stop adversaries from punching you in the mouth.” Read the complete post by Derek B. Johnson on FCW.com [...]

The New York Privacy Act Would Allow Direct Action

June 5th, 2019|Categories: Corporate Compliance, HB Risk Notes, Technology Law|Tags: Compliance, Data Collection, Data Privacy, Privacy, Regulations|

The New York Privacy Act, introduced last month by state Sen. Kevin Thomas, advocates for consumer agency over their personal data and would give New Yorkers the right to sue companies directly for privacy violations. Thomas wants companies to put customer data protection ahead of their budgetary and business goals. The bill summary reads: "Enacts the NY privacy act to require companies to disclose their methods of de-identifying personal information, to place special safeguards around data sharing and to allow consumers to obtain the names of all entities with whom their information is shared; creates a special account to fund a new office of privacy and data protection." "Fiduciaries, like an attorney or a doctor, hold onto your information. They don't share it, unless there is a need for the purpose for which they collected it,” Thomas said. “That's not what's going on here with these data companies and these data brokers. They're sharing it, and we're getting targeted.” Pushback from the tech industry has been swift. John Olsen, Director of the Internet Association, said, “The NY Privacy Act, in its current form, is unworkable for businesses that want to comply and fails to provide New York residents meaningful control over how their data is collected, used, and protected." Facebook also chimed in saying they would have to shut down Facebook [...]

CannaLawBlog — Legalizing Cannabis Cash

June 5th, 2019|Categories: Complex Business Litigation, HB Risk Notes, Law Firm Operations|Tags: Banking & Finance, Cannabis, Compliance, Regulations, Risk Management|

On May 20, 2019 banking associations from all 50 states and 1 territory sent a letter to Senate Banking, Housing, and Urban Affairs Committee urging them to conduct hearings on the merits of providing cannabis-related business access to banking services. CannaLawBlog highlighted the primary concerns of the letter in a recent post: "Again, the primary concern expressed was that current law forces state-legal businesses to operate on a cash basis, which poses a safety risk, complicates enforcement efforts, and could damage local economies." The banking associations wanted to emphasize their neutrality on the legality of cannabis, rather they wanted to show strength as a national community and validate, support, and respect those communities that have voted for legalized recreational marijuana. Read the complete post by HarrisBricken attorney Jihee Ahn on The CannaLawBlog.

Dr. Babyl: Artificial Intelligence Could Save Lives, Time and Money — TheDailyBeast.com

May 27th, 2019|Categories: Corporate Compliance, HB Risk Notes, Technology Law|Tags: Artificial Intelligence (AI), Cybersecurity, Data Analytics, Data Privacy, Healthcare|

Itchy throat? Headache? Upset stomach? There's an app for that. There is a new AI healthcare system called Babylon UK’s National Health Service which features an AI-driven app that is reportedly able to separate “run-of-the-mill” illnesses from more life-threatening ones, while saving time, money, and anxiety for patients and doctors alike. Babylon offers more than diagnostic assistance; it is accessible to people in remote areas. "For example, Babyl, the Rwandan version of Babylon, offers remote appointments with clinicians, fills prescriptions, orders lab tests, and issues referrals.” Babyl enables affordable, personalized healthcare, combined with “the brains of thousands of doctors at once” to reach patients who cannot get to a doctor’s officer. In addition to assisting doctors with everyday check-ups and treating the common cold, the AI’s abilities extend to clinical trials. “In 2018 the Mayo Clinic partnered with IBM’s Watson to match patients with breast cancer to accessible clinical trials covered by their health plans. The matching program increased the enrollment of breast cancer sufferers in Mayo Clinic’s own clinical trials by 80%." Questions are being raised, however, about how to mitigate risks posed by hacking or by nefarious manipulation of the system. Read about this and more in the complete post by Joelle Renstrom on TheDailyBeast.com.

The Wrong-Headedness of Hindsight Standards — Michelle Yeary | Drug & Device Law Blog

May 27th, 2019|Categories: Complex Business Litigation, HB Risk Notes, Mass Torts|Tags: Drug Laws, Drugs & Devices, Litigation & appeals, Product Liability|

Dechert LLP attorney Michelle Yeary cautions against applying perfect hindsight to drug liability. "We all know hindsight is 20/20. And, it’s easy. There are dozens of television and radio programs that thrive on Monday morning quarterbacking. There’s no risk in saying the coach should have called for a pass when you already know the run didn’t work. It’s also dangerous because it’s easy. People are often too quick to point out that you should have taken path B after everyone learns path A is full of potholes. Pointing it out is one thing, holding you liable for it is another." Yeary takes a look at what happened in Holley v. Gilead Science, Inc., 2019 WL 2077845 (N.D. Cal. May 10, 2019). The case involves two of the main active ingredients in AIDS drugs: TDF and TAF. The plaintiff alleges that the defendant should be responsible for allegedly knowingly using TDF over TAF (allegedly a safer alternative). TDF was FDA approved first and TAF second. Unfortunately, Yeary wrote, hindsight "can be used to demand perfection," allowing plaintiffs to "proceed on what is essentially a stop-selling theory," that first-generation drugs should not be submitted to the FDA because, in hindsight, "later approved treatments were safer." That's what happened in Holley, she said. Read the complete post by Michelle Yeary on the Drug and [...]

J&J Hit with $120 Million Verdict at Mesh Trial

May 13th, 2019|Categories: Complex Business Litigation, HB Risk Notes, Mass Torts|Tags: Medical Malpractice, Personal Injury, Product Liability|

A Philadelphia jury returned a $120 million verdict against Johnson & Johnson after finding that a negligently designed pelvic mesh implant caused chronic pain and suffering, which left plaintiff Susan McFarland incontinent and unable to have sex for the last 10 years. McFarland alleged the implant she received in 2008 caused the product to saw through the soft tissue in her pelvis and become exposed in her vagina. She had to undergo a second surgery to remove a portion of the implant (Susan McFarland,et al. v. Ethicon Inc., et al., No. 130701577, Phila. Comm. Pls. Ct.). This is the second of two trials. The jury in the first trial was deadlocked, unable to agree on the extent of negligence of the design of the Ethicon product. Tracie Palmer, McFarland’s attorney, added in the second trial that the vaginal mesh was on market prior to clinical studies determining its safety and efficacy. Defense attorney Adam Spicer maintained that the chronic pain McFarland experienced could be due to other causes, including her age. He said the product had been used for years prior. McFarland’s case is one of more than 100,000 cases brought together in the MDL, down from nearly 105,000 cases against seven manufacturers. The MDL will be closing and there will be two more waves of trial, with next wave comprising [...]