Lynch Carpenter is investigating recent Discord and WestJet data breaches on behalf of potential victims, the law firm said Friday.

Toys "R" Us Canada notified individuals Thursday of a data breach that may have compromised the personal information of an undisclosed number of customers.

Financial institutions should note the final set of New York state cybersecurity requirements taking effect Nov. 1, Hogan Lovells attorneys blogged Wednesday.

More than 53,000 passwords owned by federal and state government employees have been shared on the dark web and other public platforms since 2024, NordPass said in a study released Tuesday.

Higher education institutions face new data security challenges, including increased “global regulatory requirements on data privacy,” JacksonLewis attorneys blogged Friday.

Around 70,000 global users of Discord may have had their government ID photos exposed in the Sept. 20 data breach, said Discord in an update Wednesday. The company notified stakeholders of the breach Oct. 3. Meanwhile, Texas said Thursday it's expanding a probe of Discord.

Canada-based WestJet Airlines may have suffered a breach that leaked the sensitive information of more than 1 million customers, a law firm investigating the incident said Thursday. Multiple states also recently reported the breach.

Companies that collect customer data should strengthen their defenses against phishing, since it remains among the top cyberattack tactics, said panelists during a Practising Law Institute cybersecurity conference Monday.

The Social Security Administration (SSA) chief rejected the claims of a whistleblower Tuesday who said the activities of the Department of Government Efficiency (DOGE) risked exposing more than 300 million Americans’ social security information (see 2508260046).

Though many digital health apps and online platforms fall outside the scope of the Health Insurance Portability and Accountability Act (HIPAA), courts and regulators are using other tools to expand enforcement against them when they share sensitive health data without consent, said Sheppard Mullin lawyers in a blog post.