Cyber and Privacy Risk and Insurance in 2025: Part I—”the Basics” 

July 8th, 2025|Categories: CLE OnDemand, Insurance, Technology Law|Tags: , , , |

Join leading experts Joshua Gold and Luma Al-Shibib of Anderson Kill, P.C., and Miranda Jannuzzi of Aon for Cyber and Privacy Risk and Insurance in 2025: Part I—"The Basics”, a foundational CLE webinar that explores the evolving cyber threat landscape and how insurance can (or can’t) help mitigate losses. Learn about key cyberattack vectors, common pitfalls in the path to coverage, and the latest developments in privacy-related risks and insurance products. Ideal for those looking to strengthen their understanding of cyber risk and insurance fundamentals.

Defense of Data Breach Class Actions: Key Trends, Rulings, and Settlements

September 26th, 2024|Categories: Class Actions, CLE OnDemand, Complex Business Litigation, New Webinars|Tags: , , , , |

Data breach class actions have emerged as one of the fastest growing areas in the complex litigation space, forcing companies to navigate evolving cybersecurity risks, negative publicity, and costly litigation as a result. Litigation was particularly notable in 2023, with a record-breaking number of filings and several high-profile cases resulting in substantial settlements. The sheer volume of individuals affected by data breaches has grown significantly, leading to larger classes and subsequently higher settlement demands. Furthermore, the nature of the data being compromised is becoming more sensitive – including financial and health information – which increases the potential damages awarded in these cases. Join experienced class action defense litigators Gerald L. Maatman, Jr. and Jennifer A. Riley for a high-level breakdown of the data breach class action landscape through analysis of key trends, rulings, and litigation strategies.

Analysis of Target Decision that Loss-of-Use Damages Included Card Replacement Costs Post-Data Breach | By Joshua Mooney, Judy Selby, and Tracey Kline | Kennedys Law

April 27th, 2022|Categories: Complex Business Litigation, Emerging Litigation & Risk, HB Risk Notes, Insurance, Journal, New Featured Post for Home Page, News|Tags: , , , , |

A Significant Deviation: Target v. Ace Finds Loss-of-Use Damages Included Post-Breach Card Replacement Analysis On March 22, 2022, the United States District Court for the District of Minnesota ruled that two ACE insurers were obligated to indemnify Target Corporation (“Target”) for the amounts it paid to settle claims related to replacement of payment cards impacted in a data breach, vacating an earlier decision in which the court found that Target was not entitled to coverage. Target Corp. v. ACE Am. Ins. Co., No. 19-CV-2916 (WMW/DTS), 2022 WL 848095 (D. Minn. Mar. 22, 2022), vacating 517 F. Supp. 3d 798 (D. Minn. 2021). The new decision deviates from how other courts have evaluated general liability coverage for damages because of “loss of use of tangible property that is not physically injured.” Insurers would do well to take notice. Background In 2013, Target was the victim of a massive data breach that occurred after hackers installed malicious software on its computer network, which enabled them to steal the payment card data and personal contact information of an estimated 110 million individuals with Target payment cards (the “Data Breach”). Multiple lawsuits were brought against Target, including suits by financial institutions (the “Issuing Banks”) that had issued debit and credit cards (the “Payment Cards”) affected by the Data Breach. The Issuing Banks filed class action [...]

The Commercial Drone Industry: Privacy, Security, Threats, and Mitigation of Risk

December 2nd, 2021|Categories: Corporate Compliance, Featured On-Demand, Technology Law, Torts-On-Demand-CLE|Tags: , , , , |

HB presents a CLE-eligible webinar Now on-demand at the West LegalEdcenter THE COMMERCIAL DRONE INDUSTRY Privacy, Security, Threats, and Mitigation of Risk Drones have become an increasingly valuable tool for businesses of all types and sizes. Drones are already being used in many applications, but more will certainly arise as the technology advances. This means that certain risks, like cyber threats, will also continue to present themselves. Protecting the transmission and storage of data collected through drones is critical. Unfortunately, security usually comes as an afterthought. The drone industry is part of the aviation industry, which, based on its knowledge, keeps safety as a number one concern. Part of that safety is having proper protection for your systems, including security as a fundamental design principle. Take this webinar to gain insights on the topics listed below, and shared by an attorney who practices on the cutting-edge of this evolving technology. Topics: Defining drones. Current and future applications. FAA Modernization and Reform Act of 2012. FAA Part 107 Regulations and waivers. Resources, e.g. the FAA Drone Zone and LAANC Portal. Penalties for violations. Privacy implications. Drones as weapons. Vulnerability to cyber attacks. Take it now! What you get: 1+ CLE credits (subject to bar rules). Insights from an experienced [...]

The Cyber Insurance Market Has Problems: A Conversation With Tom Johansmeyer

November 16th, 2021|Categories: ELP, Emerging Litigation & Risk, Insurance, News, Technology Law|Tags: , , , , |

The Cyber Insurance Market Has Problems: A Conversation With Tom Johansmeyer The author of the piece is my guest on our latest episode. He is Tom Johansmeyer, ARM, is head of PCS, a Verisk business. PCS investigates and provide, independent loss estimates on catastrophes and large individual losses to the benefit of the global risk and capital supply chain. Tom has focused on the broad and rapid expansion of PCS, leading the team into Japan, New Zealand, and other APAC regions in 2019 – as well as Mexico. Tom is the architect of the PCS entry into global specialty lines, most recently adding large risk loss reporting to the group’s portfolio. Previously, Tom held insurance industry roles at Guy Carpenter (where he launched the first corporate blog in the reinsurance sector) and Deloitte. Personally, I like his LinkedIn description: "Aspiring cyclist and distance swimmer, former soldier. Leading the global charge at PCS. Haven't driven anything with a motor since 2007." Excellent. This podcast is the audio companion to the Journal on Emerging Issues in Litigation, a collaborative project between HB Litigation Conferences and the legal news folks at Law Street Media, and the Fastcase legal research family, which includes Docket Alarm and Judicata. If you have comments or wish to participate in one our projects, or want to tell me how insightful our guests are, please drop me [...]

To Pay or Not to Pay: Does Your Insurance Policy Cover Ransomware Losses? | By Pamela Hans | Anderson Kill

October 26th, 2021|Categories: Emerging Litigation & Risk, HB Risk Notes, Insurance, Journal, News, Technology Law|Tags: , , , , |

To Pay or Not to Pay: Does Your Insurance Policy Cover Ransomware Losses? Abstract Ransomware attacks are a rapidly growing threat against organizations. Paying ransom demands is a risky proposition and may even lead to sanctions against the targeted company. Either way, the damage to a company’s operation and integrity can be cripplingly severe. Should a company suffer losses from cyber extortion, its insurance company will be one of the resources it turns to for relief. But with cyber coverage increasingly out of reach for some, policyholders may find coverage in more traditional coverages. In this article, the author evaluates the potential for coverage under several policy types, and underscores the importance of understanding policy language, the relevant law, and the potential regulatory ramifications of meeting ransom demands. Author Pamela D. Hans (phans@andersonkill.com) is the managing shareholder of Anderson Kill’s Philadelphia office. Her practice concentrates on insurance coverage exclusively on behalf of policyholders. Pam is also a member of the firm’s COVID Task Group and Cyber Recovery Group. About The Journal on Emerging Issues in Litigation is a co-production of HB, Fastcase, and Law Street Media. You can also hear the complementary (and complimentary) Emerging Litigation Podcast wherever podcasts appear. For questions, contact Tom Hagy, Editor in Chief, at Editor@LitigationConferences.com.

Data Security for Small Law Firms with Ondrej Krehel and Gaspare Marturano

August 3rd, 2021|Categories: ELP, Emerging Litigation & Risk, HB Risk Notes, Law Firm Operations, News, Technology Law|Tags: , , , , |

Data Security for Small Law Firms with Ondrej Krehel and Gaspare Marturano Joining me to discuss this important issue is Ondrej Krehel, CEO & Founder of LIFARS, a New York-based incident response and digital forensics firm specializing in cybersecurity protection. Ondrej is recognized for his digital forensic expertise and ethical hacking skills. He participates in high-profile engagements around the world using his proprietary methodology to achieve the most rapid root-cause analysis and remediation. He is a former lecturer at FBI Training Academy who has led forensic investigations and cybersecurity involving the U.S. government, including military cyber special operations. He holds a Ph.D. in Computer Forensics from Police Academy in Bratislava, Slovakia, an M.S. degree in Mathematical Physics from Comenius University in Bratislava, and an Engineering Diploma from Technical University in Zvolen, Slovakia. Joining Ondrej and me is Gaspare J. Marturano, Chief Marketing Officer at LIFARS. Gaspare is a former Director of Information Systems for a large Connecticut law firm and has consulted on these issues with a number of other law firms. This podcast is the audio companion to the Journal on Emerging Issues in Litigation, a collaborative project between HB Litigation Conferences and the Fastcase legal research family, which includes Full Court Press, Law Street Media, and Docket Alarm. If you have comments or wish to participate in one our projects, or want to tell me how [...]

Policyholders Hit With Ransomware, Then Strike Insurance Coverage Oil in Indiana

June 30th, 2021|Categories: Complex Business Litigation, HB Risk Notes, HB Tort Notes, Insurance, Journal, News|Tags: , , , , |

Policyholders Hit With Ransomware, Then Strike Insurance Coverage Oil in Indiana Abstract The cost of ransomware to businesses is estimated to have doubled since 2019 to $20 billion, according to Coveware. Policyholders turn to their insurance policies to recover losses that average more than $230,000 per incident. In the case discussed, the carrier denied a policyholder’s claim as being outside the computer fraud provisions of the commercial crime portion of the policy. Two lower courts sided with the carrier, but the Indiana Supreme Court ruled in favor of coverage. This is a significant win for policyholders seeking coverage for losses under policies not sold as “cyber insurance.” The article discusses the decision and the precedents cited in an area of litigation that only promises to expand as ransomware and similar digital crimes proliferate. Author Scott Godes and Andy Detherage were counsel to United Policy-holders, which submitted an amicus brief in favor of granting transfer and reversing the lower court decision, in the Indiana Supreme Court decision referenced in this article. Messrs. Godes and Detherage are partners in Barnes & Thornburg LLP. About The Journal on Emerging Issues in Litigation is a co-production of HB, Fastcase, and Law Street Media. You can also hear the complementary (and complimentary) Emerging Litigation Podcast wherever podcasts appear. For questions, contact Tom Hagy, Editor [...]

Myriah Jaworski on Arbitration as Defense Against Data Breach Class Actions

March 19th, 2021|Categories: Class Actions, HB Risk Notes, HB Tort Notes, Journal, News, Technology Law|Tags: , , , , , , |

Myriah Jaworski on Individual Arbitration as a Defense Strategy Against Data Breach Class Actions Abstract Data privacy class actions are proliferating. Defendant companies may find an effective defense strategy is moving to compel individual arbitration. Not all contracts have the appropriate language, however, and, even if they do, they may not succeed. This article, which will appear in the forthcoming issue of the Journal on Emerging Issues in Litigation, discusses U.S. privacy litigation and case law on compelling arbitration of class claims in the privacy law context, with recommendations for businesses to improve their chances of securing court orders that enforce arbitration language in their agreements. Author Myriah V. Jaworski, Esq. (mjaworski@beckage.com), is a member with the Beckage, a law firm specializing in technology, data security and privacy. She is a Certified Information Privacy Professional, United States (CIPP/US) and Certified Information Privacy Professional, Europe (CIPP/E). She leads Beckage’s Privacy Litigation Practice Group where she represents clients in data breach actions, technology vendor disputes, and the defense of consumer class actions and related regulatory investigations. Myriah is also a former Trial Attorney with the Department of Justice. About The Journal on Emerging Issues in Litigation is a co-production of HB, Fastcase, and Law Street Media. You can also hear the complementary (and complimentary) Emerging Litigation Podcast wherever podcasts appear. For [...]

The Dark Net: Anonymity, Infrastructure, and the Future

July 10th, 2020|Categories: Corporate Compliance, HB Risk Notes, Mass Torts, News, Technology Law|Tags: , , , , |

Register Webinar Info Wednesday, Aug. 5, 2020 United States 8am PT | 10am CT | 11am ET United Kingdom 4pm BST Get CLE or CPE, a complete set of materials, and answers to your questions! Email us your: Speaker questions CLE questions Topics Covered Physical and Logical Topology and Method of Data Transmission Using the Dark Net for Threat Hunting Hacking Groups and Malicious Hackers   The Future of The Dark Net and Anonymity The Dark Net: Anonymity, Infrastructure, and the Future Is the Dark Web Getting Darker?  Wed., Aug. 5, 2020 | Produced for Access Data by HB Litigation Conferences The web, however singular it may seem from behind an everyday user’s computer or smartphone screen, comprises three distinctive parts: the public net (or web), the deep net, and the dark net. Though the dark net contains some innocuous content and is used for legitimate purposes, it also operates as a platform for illegal marketplaces. These offer almost anything a criminal or cybercriminal might want to buy or sell like malware, exploits, hackers-for-hire, information lifted from data breaches, censored content, and goods like drugs, guns, and other contraband. Observers report that the dark web is getting darker, meaning hardcore criminals make up a greater percentage of its user base. Exploits and [...]

Setting the record straight on cyber insurance claim denials and the ‘war exclusion’

July 22nd, 2019|Categories: HB Risk Notes, Insurance, Technology Law|Tags: , , , , |

Is insurance coverage for cyber claims barred by a war exclusion?  Judy Selby and Peter McLaughlin asked this question in a recent post for IAPP. Two corporate giants, Mondelez International and Merck, made the headlines recently as they sustained serious damage as a result of a NotPetya infection, an encrypting ransomware. They have each filed declaratory judgments after their carriers denied their claims. Reports of these insurance disputes have led to concerns that cyber incidents involving state actors would not be covered by cyber policies with war exclusions. The Verizon 2019 Data Breach Investigations Report attributes 23% of breaches  to nation-states or state-affiliated players. "These state-sponsored attacks typically range from theft or espionage to financial gain; however, some attacks appear to have been driven by grudge or by swatting a neighbor," Selby and McLaughlin write. "[P]erhaps we are viewing this through an old lens. Insurance has often been purchased to address hazards. Specifically, an organization obtains a policy to counter the slim risk of a fire, flood or other catastrophe. Fred Kaplan wrote an article for Slate in April in which he argues the inevitability of attacks – state-sponsored or otherwise – means that we should view cyber insurance more like we do health insurance: coverage against the inevitable, rather than against a hazard risk." Read on for what else Selby [...]

Cyber Captive Survey 2019 — AON

June 26th, 2019|Categories: HB Risk Notes, Insurance, Technology Law|Tags: , , , , |

Aon’s Cyber Captive Survey 2019 says that the rapid growth in the captive market of cyber-specific policies underscores that cyber is one of the primary risks for organizations across the world driven by an increasingly complex operational, technological and regulatory environment. Key findings include: Healthcare and energy industries are leading the way, with 19% and 15% of organizations in these industries utilizing captives for cyber coverage respectively. 41% of captives surveyed are incubating cyber risk. The range in limits of cover taken out is up to USD$100 million. An estimated 34% of all captives will be writing cyber in five years’ time. Read the complete report here! 

Go to Top