Welcome to your monthly legal insights on the trends impacting the Retail, Hospitality, and Food & Beverage Industries.
Cybersecurity/Privacy
Cybersecurity Requirements
Last month the Federal Acquisition Regulatory (FAR) Council announced a major proposal regarding cybersecurity incident reporting and information. The new proposal would also require the adoption and implementation of cybersecurity policies. The FAR proposal would become mandatory for federal contract actors. Comments currently are now due by February 2, 2024.
The proposed reporting changes raise several significant challenges. Please click here to review a discussion of the proposal by Clark Hill’s Melissa Ventrone and J. William Eshelman.
IT Companies Continue to be Targets for Cybersecurity Attacks
Two more IT companies were recently the victim of cybersecurity attacks, continuing the trend of IT companies being targeted by hackers. The first, Okta, announced on November 30 that hackers had stolen information on all of its users in an attack that occurred in September. In the second, IT company Zeroed-In Technologies announced on November 27, that the names, dates of birth, and Social Security numbers of two million people, including thousands of employees of Dollar Tree and Family Dollar stores was accessed by unauthorized actors.“ Retailers, Hospitality companies and Food & Beverage operators are encouraged to use care and undertake due diligence when selecting vendors to assist with their IT needs.
Only 3% of UK Organizations Avoided Supply Chain Cybersecurity Breach in 2023
