Connect with us

Business

Legal storms loom over businesses as new US regulations mandate swift disclosure of cyberattacks

The new US regulations pose a legal and reputational minefield for businesses and experts say Canada may follow suit, highlighting the need for cybersecurity and crisis communication strategies

Published

on

Share this:

In the case of new US regulations for businesses required to publicize that they were hacked, there may be an unpleasant price to pay. Observers in the industry say companies are increasingly facing legal consequences and public relations disasters.

The regulation requires businesses to report any cyberattack to the Securities and Exchange Commission (SEC). They must disclose the breach within four days, list various ways the data was compromised, and show how risks were mitigated. 

“The new rules are a part of a larger regulatory shift to hold businesses accountable for protecting their customers online, and to hold the companies liable for the losses they suffer because of these attacks,” notes Israel Mazin, co-founder and CEO of Memcyco, a website impersonation detection and protection solution.  

The drawbacks? 

“This puts businesses in a vulnerable position,” he adds. “Publicly disclosing attacks means potentially big reputational blowback — and it has yet to be shown to help solve the problem.” 

Though he won’t mention names, Mazin says he knows of several renowned businesses that lost revenue as a result of their willingness to announce a data breach.

The US regulations have already become a source of perverse games for hackers.

In one story, a hacker played “cop and robber” at the same time: after breaching a company, they then reported them to the SEC for not disclosing the breach. Essentially, this double attack was an unforeseen consequence of otherwise well-intentioned law.

What are the implications in Canada?

The legal problem is another challenge. 

Dave Oswald, founder of Forensic Restitution, which specializes in forensic accounting and computer forensics, says there’s already a proliferation of court cases filed against American breached entities. Expect the phenomena to soon inch north to Canada, he says. 

“I think over time there will be increased litigation,” he says. “Especially with companies who don’t have adequate cyber training.” Those organizations or businesses that do not have a cyber reaction team, or are not set up to protect against a cyber attack, “are the companies that, I think, will end up on the wrong side of lawsuits going forward.” 

There are already plenty of cybersecurity lawsuits being handled in Canada and the US, adds Andrew Buckles, cyber services owner at ISA Cybersecurity in Toronto. He points out five Ontario hospitals that recently faced a “major cyber attack” and are currently facing a close to half-billion dollar class action lawsuit.  

“If you’re being hit with a very large lawsuit, that can be extremely detrimental to your business,” Buckles says. “Chances are you weren’t managing that risk effectively. And you may not have even been aware of that risk.”

Canada has its own cybersecurity laws proposed in Bill C-26, also known as the Critical Cyber Systems Protection Act, which Buckles says is a “good example” of oversight. However, he adds that “Canada certainly needs to continue looking at what regulatory authority they have over different industries and how [they can] improve those requirements to a minimum standard.” 

“Lots of businesses collect data and information and digitize; if they experience a cybersecurity incident, the public is impacted in many cases,” he continues. “So there is a public interest in making sure that organizations do manage their risks effectively so that the public doesn’t have to ultimately pay the price.”

Guidelines for data security

When it comes to dealing with cyber breaches, the United States and Canada have different rules. In Canada, if a cyber breach is considered significant, companies only need to issue a press release. Other than this, most of the guidelines are more like suggestions than strict requirements. 

In February 2017, the guidelines for this in Canada were outlined in the Canadian Securities Administrators’ (CSA) notice for disclosure of cybersecurity risks and incidents. 

Canadian Securities Litigation reported that these were characterized as “guidelines,” including: risk governance and risk mitigation strategy, detailed disclosure of material cybersecurity risks, procedures designed to ensure that detected cybersecurity incidents are communicated to management for timely disclosure, disclosure of the anticipated impact, and costs of the incident.

The report said legal and protocol demands of companies are sure to follow. “Trends in the United States are often a harbinger of what may be coming to Canada,” the article states. And, while the trend in cybersecurity disclosure-related litigation hasn’t hit the Great White North to the same extent yet, the authors say that “Canadian companies should be watching.”

In Canada, the emphasis in proposed class actions regarding cyber attacks has mainly centered around individuals whose data might have been impacted by a cybersecurity event rather than securities class actions, according to the authors. 

In November 2022, Ontario Court of Appeal issued three decisions that held that companies who had been cyber attacked by unknown third parties, were not liable for the damages. The authors of the article, however, say this law “will continue to be tested.”

Mitigating risk

Ultimately, for any Canadian or American company, cyber damage control is key to mitigating legal issues or reputational issues. At the point of discovering a hack, an organization or company should know the right steps to curtail the threat and minimize damages. 

“Communication should include clear identification of the threat, steps the business is taking, and actionable advice for customers, such as verifying website URLs, avoiding clicking on suspicious links, and monitoring their accounts for unusual activity,” says Mazin.

By the time of discovery, attackers may have already harvested user data — which they can use or sell — leading to identity theft or further scams. 

As a result, it could shake customer confidence in the brand. 

“It’s vital to provide reassurance that customer protection is a priority, and to offer support services for those who may have been compromised,” Mazin adds.

In regards to the new US regulations, he says the government did the right thing by looking out for the consumer’s best interest in requiring data breach crises to be open and transparent. The next requirement should be legally-mandated up-to-date cybersecurity, he says, “to greatly minimize the overall risk of privacy breaches, and legal consequences.”

Something like this would require security professionals to work in tandem with the government so as not to make this kind of law onerous, “but also ensure a standard set for major companies.” 

As for the reputational damages after the fact, “it would pay for companies to have a pre-emptive plan to cope with public relations fallout,” says Mazin.

Here are some tips to on how to mitigate risk:

Implement robust cybersecurity measures:

  • Establish strong firewalls, encryption, and intrusion detection systems.
  • Regularly update and patch software to address vulnerabilities.

Prioritize employee training and awareness:

  • Provide comprehensive cybersecurity training to employees to avoid human error.

Develop and test an incident response plan:

  • Create a well-documented incident response plan for cybersecurity breaches.
  • Regularly conduct simulations and drills to ensure effectiveness.

Secure customer data and communication:

  • Encrypt customer data.
  • Develop clear communication protocols for timely and transparent disclosure of cyber incidents.

Regularly review and update policies:

Share this:

Business

5 tech advancements sports venues have added since your last event

Published

on

By

Uniqode compiled a list of technologies adopted by stadiums, arenas, and other major sporting venues in the past few years.
Share this:

In today’s digital climate, consuming sports has never been easier. Thanks to a plethora of streaming sites, alternative broadcasts, and advancements to home entertainment systems, the average fan has myriad options to watch and learn about their favorite teams at the touch of a button—all without ever having to leave the couch.

As a result, more and more sports venues have committed to improving and modernizing their facilities and fan experiences to compete with at-home audiences. Consider using mobile ticketing and parking passes, self-service kiosks for entry and ordering food, enhanced video boards, and jumbotrons that supply data analytics and high-definition replays. These innovations and upgrades are meant to draw more revenue and attract various sponsored partners. They also deliver unique and convenient in-person experiences that rival and outmatch traditional ways of enjoying games.

In Los Angeles, the Rams and Chargers’ SoFi Stadium has become the gold standard for football venues. It’s an architectural wonder with closer views, enhanced hospitality, and a translucent roof that cools the stadium’s internal temperature. 

The Texas Rangers’ ballpark, Globe Life Field, added field-level suites and lounges that resemble the look and feel of a sports bar. Meanwhile, the Los Angeles Clippers are building a new arena (in addition to retail space, team offices, and an outdoor public plaza) that will seat 18,000 people and feature a fan section called The Wall, which will regulate attire and rooting interest.

It’s no longer acceptable to operate with old-school facilities and technology. Just look at Commanders Field (formerly FedExField), home of the Washington Commanders, which has faced criticism for its faulty barriers, leaking ceilings, poor food options, and long lines. Understandably, the team has been attempting to find a new location to build a state-of-the-art stadium and keep up with the demand for high-end amenities.

As more organizations audit their stadiums and arenas and keep up with technological innovations, Uniqode compiled a list of the latest tech advancements to coax—and keep—fans inside venues.


A person using the new walk out technology with a palm scan.

Jeff Gritchen/MediaNews Group/Orange County Register // Getty Images

Just Walk Out technology

After successfully installing its first cashierless grocery store in 2020, Amazon has continued to put its tracking technology into practice.

In 2023, the Seahawks incorporated Just Walk Out technology at various merchandise stores throughout Lumen Field, allowing fans to purchase items with a swipe and scan of their palms.

The radio-frequency identification system, which involves overhead cameras and computer vision, is a substitute for cashiers and eliminates long lines. 

RFID is now found in a handful of stadiums and arenas nationwide. These stores have already curbed checkout wait times, eliminated theft, and freed up workers to assist shoppers, according to Jon Jenkins, vice president of Just Walk Out tech.

A fan presenting a digital ticket at a kiosk.

Billie Weiss/Boston Red Sox // Getty Images

Self-serve kiosks

In the same vein as Amazon’s self-scanning technology, self-serve kiosks have become a more integrated part of professional stadiums and arenas over the last few years. Some of these function as top-tier vending machines with canned beers and nonalcoholic drinks, shuffling lines quicker with virtual bartenders capable of spinning cocktails and mixed drinks.

The kiosks extend past beverages, as many college and professional venues have started using them to scan printed and digital tickets for more efficient entrance. It’s an effort to cut down lines and limit the more tedious aspects of in-person attendance, and it’s led various competing kiosk brands to provide their specific conveniences.

A family eating food in a stadium.

Kyle Rivas // Getty Images

Mobile ordering

Is there anything worse than navigating the concourse for food and alcohol and subsequently missing a go-ahead home run, clutch double play, or diving catch?

Within the last few years, more stadiums have eliminated those worries thanks to contactless mobile ordering. Fans can select food and drink items online on their phones to be delivered right to their seats. Nearly half of consumers said mobile app ordering would influence them to make more restaurant purchases, according to a 2020 study at PYMNTS. Another study showed a 22% increase in order size.

Many venues, including Yankee Stadium, have taken notice and now offer personalized deliveries in certain sections and established mobile order pick-up zones throughout the ballpark.

A fan walking past a QR code sign in a seating area.

Darrian Traynor // Getty Images

QR codes at seats

Need to remember a player’s name? Want to look up an opponent’s statistics at halftime? The team at Digital Seat Media has you covered.

Thus far, the company has added seat tags to more than 50 venues—including two NFL stadiums—with QR codes to promote more engagement with the product on the field.  After scanning the code, fans can access augmented reality features, look up rosters and scores, participate in sponsorship integrations, and answer fan polls on the mobile platform.

Analysts introducing AI technology at a sports conference.

Boris Streubel/Getty Images for DFL // Getty Images

Real-time data analytics and generative AI

As more venues look to reinvigorate the in-stadium experience, some have started using generative artificial intelligence and real-time data analytics.  Though not used widely yet, generative AI tools can create new content—text, imagery, or music—in conjunction with the game, providing updates, instant replays, and location-based dining suggestions

Last year, the Masters golf tournament even began including AI score projections in its mobile app. Real-time data is streamlining various stadium pitfalls, allowing operation managers to monitor staffing issues at busy food spots, adjust parking flows, and alert custodians to dirty or damaged bathrooms. The data also helps with security measures. Open up an app at a venue like the Honda Center in Anaheim, California, and report safety issues or belligerent fans to help better target disruptions and preserve an enjoyable experience.

Story editing by Nicole Caldwell. Copy editing by Paris Close. Photo selection by Lacy Kerrick.

This story originally appeared on Uniqode and was produced and
distributed in partnership with Stacker Studio.

Share this:
Continue Reading

Business

Import costs in these industries are keeping prices high

Published

on

By

Machinery Partner used Bureau of Labor Statistics data to identify the soaring import costs that have translated to higher costs for Americans.  
Share this:

Inflation has cooled substantially, but Americans are still feeling the strain of sky-high prices. Consumers have to spend more on the same products, from the grocery store to the gas pump, than ever before.

Increased import costs are part of the problem. The U.S. is the largest goods importer in the world, bringing in $3.2 trillion in 2022. Import costs rose dramatically in 2021 and 2022 due to shipping constraints, world events, and other supply chain interruptions and cost pressures. At the June 2022 peak, import costs for all commodities were up 18.6% compared to January 2020.

While import costs have since fallen most months—helping to lower inflation—they remain nearly 12% above what they were in 2020. And beginning in 2024, import costs began to rise again, with January seeing the highest one-month increase since March 2022.

Machinery Partner used Bureau of Labor Statistics data to identify the soaring import costs that have translated to higher costs for Americans. Imports in a few industries have had an outsized impact, helping drive some of the overall spikes. Crop production, primary metal manufacturing, petroleum and coal product manufacturing, and oil and gas extraction were the worst offenders, with costs for each industry remaining at least 20% above 2020.


A multiline chart showing the change in import costs in four major product industries.

Machinery Partner

Imports related to crops, oil, and metals are keeping costs up

At the mid-2022 peak, import costs related to oil, gas, petroleum, and coal products had the highest increases, doubling their pre-pandemic costs. Oil prices went up globally as leaders anticipated supply disruptions from the conflict in Ukraine. The U.S. and other allied countries put limits on Russian revenues from oil sales through a price cap of oil, gas, and coal from the country, which was enacted in 2022.

This activity around the world’s second-largest oil producer pushed prices up throughout the market and intensified fluctuations in crude oil prices. Previously, the U.S. had imported hundreds of thousands of oil barrels from Russia per day, making the country a leading source of U.S. oil. In turn, the ban affected costs in the U.S. beyond what occurred in the global economy.

Americans felt this at the pump—with gasoline prices surging 60% for consumers year-over-year in June 2022 and remaining elevated to this day—but also throughout the economy, as the entire supply chain has dealt with higher gas, oil, and coal prices.

Some of the pressure from petroleum and oil has shifted to new industries: crop production and primary metal manufacturing. In each of these sectors, import costs in January were up about 40% from 2020.

Primary metal manufacturing experienced record import price growth in 2021, which continued into early 2022. The subsequent monthly and yearly drops have not been substantial enough to bring costs down to pre-COVID levels. Bureau of Labor Statistics reporting shows that increasing alumina and aluminum production prices had the most significant influence on primary metal import prices. Aluminum is widely used in consumer products, from cars and parts to canned beverages, which in turn inflated rapidly.

Aluminum was in short supply in early 2022 after high energy costs—i.e., gas—led to production cuts in Europe, driving aluminum prices to a 13-year high. The U.S. also imposes tariffs on aluminum imports, which were implemented in 2018 to cut down on overcapacity and promote U.S. aluminum production. Suppliers, including Canada, Mexico, and European Union countries, have exemptions, but the tax still adds cost to imports.

U.S. agricultural imports have expanded in recent decades, with most products coming from Canada, Mexico, the EU, and South America. Common agricultural imports include fruits and vegetables—especially those that are tropical or out-of-season—as well as nuts, coffee, spices, and beverages. Turmoil with Russia was again a large contributor to cost increases in agricultural trade, alongside extreme weather events and disruptions in the supply chain. Americans felt these price hikes directly at the grocery store.

The U.S. imports significantly more than it exports, and added costs to those imports are felt far beyond its ports. If import prices continue to rise, overall inflation would likely follow, pushing already high prices even further for American consumers.

Story editing by Shannon Luders-Manuel. Copy editing by Kristen Wegrzyn.

This story originally appeared on Machinery Partner and was produced and
distributed in partnership with Stacker Studio.

Share this:
Continue Reading

Business

The states where people pay the most in car insurance premiums

Published

on

By

Cheap Insurance compiled a ranking of the states where people pay the most in full-coverage car insurance premiums using MarketWatch data.
Share this:

Nearly every state requires drivers to carry car insurance, but the laws vary, and many factors affect the cost of coverage.

Some are controllable, at least to degrees: the type of car you have and your credit history. Some are not: your age and gender. Your marital status, place of residence, and claims history are among the other variables that go into it.

Across the United States, premiums are soaring, rising 20% year over year and increasing six times faster than consumer prices overall as of December 2023, CBS reported. Last September, CNN noted that car insurance rates jumped more in the previous year than they had since 1976.

CBS pointed to many potential reasons for these increases in prices. Coronavirus pandemic-era issues have made buying, fixing, and replacing vehicles costlier. Extreme weather events caused by climate change also damage more vehicles, while insurance companies are increasing their business costs. Severe and more frequent crashes are to blame as well, CNN reported.

On top of these, local factors such as population density, the number of uninsured drivers, and the frequency of insurance claims all affect premiums, which can lead motorists to change or switch their coverage, use other modes of transportation, or even alter decisions about when to buy a vehicle or what to look for.

To see how geography affects cost, Cheap Insurance mapped the states where people pay the most in car insurance premiums using MarketWatch data. Premium estimates were based on full-coverage car insurance for a 35-year-old driver with good credit and a clean driving record. Data accurate as of February 2024.


A heat map showing full-coverage car insurance premiums across the US

Cheap Insurance

Americans pay $167 per month on average for full-coverage insurance

There are common denominators among the five states where it’s most expensive to have car insurance: Michigan, Florida, Louisiana, Nevada, and Kentucky. Washington D.C. is another pricey locale, ranking #4 overall.

Three of these six are no-fault jurisdictions and require additional coverage beyond coverage to pay for medical costs. Michigan notably calls for $250,000 in personal injury protection (though people with Medicaid and Medicare may qualify for lower limits), $1 million in personal property insurance for damage done by your car in Michigan, and residual bodily injury and property damage liability that starts at $250,000 for a person harmed in an accident.

Other commonalities between these states include high urban population densities. At least 9 in 10 people in Nevada, Florida, and Washington D.C. live in cities and urban areas, which leads to more crashes and thefts and high rates of uninsured drivers and lawsuits. Additionally, Louisiana, Florida, and Kentucky rank #5, #8, and #10, respectively, in motor vehicle crash deaths per 100 million vehicle miles traveled in 2021 based on Department of Transportation data analyzed by the Insurance Institute for Highway Safety.

A highway in Louisville.

Canva

#5. Kentucky

– Monthly full-coverage insurance: $210
– Monthly liability insurance: $57

A car driving through the desert and mountain scenery in Nevada.

Canva

#4. Nevada

– Monthly full-coverage insurance: $232
– Monthly liability insurance: $107

Cars parked on a street in New Orleans.

Canva

#3. Louisiana

– Monthly full-coverage insurance: $253
– Monthly liability insurance: $77

A bridge over turquoise water.

Canva

#2. Florida

– Monthly full-coverage insurance: $270
– Monthly liability insurance: $115

A truck on a highway surrounded by Fall foliage.

Canva

#1. Michigan

– Monthly full-coverage insurance: $304
– Monthly liability insurance: $113

Story editing by Carren Jao. Copy editing by Paris Close. Photo selection by Lacy Kerrick.

This story originally appeared on Cheap Insurance and was produced and
distributed in partnership with Stacker Studio.

Share this:
Continue Reading

Featured