82 episodes
Cyber Law Revolution Spencer Pollock
-
- Business
-
-
3.8 • 54 Ratings
-
The cyber war is upon us. We are here to talk about how to keep your business from going bankrupt after a data breach, the legal obligations associated with cyber and privacy law, and all things in between! We welcome questions and comments - call us at 4109175189 or email spollock@mcdonaldhopkins.com
-
Ep. 82 Maryland's New Data Privacy Act
Ep. 82 of the Cyber Law Revolution is live!In this episode, we do a deep nerdy dive into Maryland's New Data Privacy act, the implications behind, how to comply, and the enforcement mechanisms.Bottom line: get ahead of the privacy compliance curve!Keep the questions and calls coming - 410-917-5189 or spollock@mcdonaldhopkins.com
-
Ep. 81 Change Health and Big Implications
Ep. 81 of the Cyber Law Revolution is live!In this episode, we discuss the crippling impact of the ransomware attack on Change Health and the downstream implications.What is the lesson: vendor breaches are not going away, and we must continue our due diligence!Keep the questions and comments coming! Call me 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com
-
Ep. 80 The LockBit Take Down
Ep. 80 of the Cyber Law Revolution is live!In this episode, we dive into the FBI's (and our international police partners) takedown of LockBit's webpage and seizure of decryption keys, LockBit's failure to patch, and implications downstream!You won't want to miss it!Keep the questions and calls coming. Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com
-
Ep. 79 23andMe's Novel Legal Theory but PR nigthmare
Ep. 79 of the Cyber Law Revolution is live!In this episode, we discuss 23andMe's novel legal theory regarding recycled usernames and passwords, and its impact on the data breach. Further, we jump into the PR nightmare this position has caused and the potential consequences of such a legal position.You won't want to miss it!Keep the questions, calls, and comments coming! Call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com.
-
Ep. 78 Chris Loehr drops by to discuss 2023 in review and what to expect in 2024
Ep. 78 of the Cyber Law Revolution is live!Chris Loehr of Solis drops by to discuss what we saw in 2023, provide insight into what to expect in 2024, and tips for organizations to mitigate the harms of a data breach. You won't want to miss it!Keep the questions and calls coming! Call me at 410-917-5189 or e-mail at spollock@mcdonaldhopkins.com!Enjoy!
-
Ep. 77 China on the cyber offensive
Ep. 77 of the Cyber Law Revolution is live! In this episode, we discuss how China is on the offensive with the cyber war and trying to position itself in our critical infrastructure for future conflicts. Scary scenario and one we need to keep a close eye on.As always, keep the questions, calls, and comments coming - call me at 410-917-5189 or e-mail me at spollock@mcdonaldhopkins.com. Enjoy!
Customer Reviews
Convergence!
Spencer does an amazing job of letting us know the past, present and future of all things cyber to help organizations and stakeholders at all levels connect, legal, tech, and policy in way that’s easy to understand with the caveat that inaction and stagnation in this arena has fatalities for organizations in the data=currency sense. I’ll continue to listen as new content emerges.
The Spencer Show
Your creative opening line sounds like something I once heard in a famous Jim Carrey movie.
Fantastic, but with some generalized terms
First, I’m a career auditor, and have spent the last 8+ in IT Audit with multiple related credentials (CISA, CySA+, CDPSE) and several more in progress(Security+, Cloud+, CASP+), and focus on a holistic view of IT Risks encompassing GRC, Cybersecurity, and Data Privacy. I’ve executed audits, reviews, and assessments (including the use of various tools and products, such as Kali) in many different industries and environments and at multiple levels of infrastructure (NW, DB, OS) and across many different out of the box, proprietary, and industry specific Applications and tools. I’ve done work across public and private sector orgs as well.
So, first I’m a big fan of this podcast. From the variety of topics, to the structure. Some episodes are short, and some are long, but the length and content generally compliment each other pretty well. Solid job speaking to topics in very real ways, and addressing things in an way that helps quantify the cybersecurity issues we are facing in a very real way. I tend to operate more in the technical details, while this podcast does a great job of making the risks and issues easier for senior execs to understand.
My twos criticisms
- the general use of the term “Hackers”. Hackers are GOOD. Cybercriminals, Threat actors, Nationstate Attackers, Script Kiddies, black hats, etc. are BAD. We must stop referring to these Cybercriminals as HACKERS, and start using the appropriate terms instead of generalizing. Hackers help organizations and companies address vulnerabilities, and defend against the criminals. Hackers respond to incidents, and help implement defense in-depth. I could go on here, but you get the idea.
- The focus here seems to be on enabling companies to protect themselves, even when they have completely failed to do their job, and exert due care to identify and respond to risks. We need attorneys who will not simply try to help negligent orgs, but those who want to see individuals protected, and their interest taking precedence over these negligent organizations. I hope there will be topics addressing how individuals can use cybersecurity law to hold organizations accountable, and push for laws that are based on what is moral and ethical and constitutional. I’d also hope for information on this podcast on around why it’s unethical for the government to break the law, such as with the NSA and the recent ruling by a judge that it’s behavior was illegal.
Keep the podcast coming Spencer.