The Yahoo Inc. breach of at least 500 million user accounts in a late 2014 cyberattack—the largest such breach on record—could trigger a number of legal and regulatory requirements from 47 different state breach notification laws in the United States, as well as inquiries from federal or international regulators.
“There are slight differences across the board, so someone in Yahoo’s law department is going to have a bad day trying to figure out how to notify all of these data breach victims,” said Larry Ponemon, chairman and founder of the Ponemon Institute, a privacy and data protection think tank.
This content has been archived. It is available through our partners, LexisNexis® and Bloomberg Law.
To view this content, please continue to their sites.
Not a Lexis Subscriber?
Subscribe Now
Not a Bloomberg Law Subscriber?
Subscribe Now
LexisNexis® and Bloomberg Law are third party online distributors of the broad collection of current and archived versions of ALM's legal news publications. LexisNexis® and Bloomberg Law customers are able to access and use ALM's content, including content from the National Law Journal, The American Lawyer, Legaltech News, The New York Law Journal, and Corporate Counsel, as well as other sources of legal information.
For questions call 1-877-256-2472 or contact us at [email protected]