Tag Archives: COVID-19

More Tips On Protecting Your Virtual Meetings to Avoid a Cybersecurity Breach: An Update

top view photo of girl watching through imac

Photo by Julia M Cameron on Pexels.com

At this point, many of us are well into our fourth or fifth week of quarantine due to the outbreak of COVID-19. Even for those of us who are fortunate enough to be able to work remotely from our homes, this comes with certain challenges, including potential security issues with virtual conferencing. In our first installment about virtual meetings, and their unintended vulnerabilities, we provided some guidance on how you and your staff might implement certain strategies to keep your virtual conferences as safe as possible from hackers and trolls. In this new installment, we will provide further guidance on staying safe amidst emerging privacy and security concerns associated with virtual meeting platforms.

Zoom Announces Updates to its Data Privacy and Security Measures

On April 1, 2020, the Chief Operating Officer of Zoom, Eric Yuan, announced certain changes that Zoom is making to enhance its virtual meeting spaces. On April 14th, the Chief Product Officer of Zoom, Oded Gal, provided clarification on those enhancements to those of us who are using Zoom during quarantine.

  • Have a plan and be prepared for interference in your virtual meetings. Zoom has encouraged its users to have a plan in place for their virtual meetings and to be prepared should any unwanted interference arise. This includes ensuring that the application has been updated to include the latest security features, co-hosting meetings whenever possible, and utilizing preexisting and new security tools built into the application. To check for updates to the app, click on the main menu, then click on “Check for Updates,” and then “Begin Upgrade” if any new updates are available. We recommend doing this every week or so to ensure that you and your staff are up to speed on all available cybersecurity protections.
  • Co-host and record your virtual meetings whenever possible. A meeting creator can choose to co-host a meeting while creating the meeting invitation or in the actual Zoom meeting itself. A co-host can monitor the virtual waiting room or assist with any disruptions. Furthermore, record your Zoom meetings whenever possible because recording meetings creates a forensic trail of the meetings, as well as any bad actors that interfere with them, as soon as the meetings begin. The more data that virtual meeting platforms are able to collect about bad actors, the better able they are to stop the threat of further disruption.
  • Zoom has increased access to its security features. Zoom has made its pre-existing security features easier to find. A “Security” button has been added to the bottom banner of virtual meetings and is now easily accessible to meeting hosts. By clicking on this new security feature, meeting hosts are able to enable a waiting room or lock the meeting. Moreover, a meeting host can also remove a participant from a virtual meeting. Once that participant has been removed, he or she cannot reenter the meeting, even if using a different username. This is because as a part of Zoom’s new security rollouts, Zoom has started to collect IP addresses, among other data, to be able to better respond to security threats. While removing a participant from a meeting will only remove the participant from that particular meeting, you have other tools available to permanently block that user.

For example, right now Zoom recommends recording your meetings whenever practicable to ensure a forensic trail is created, as stated above. In addition, Zoom recommends taking a screenshot whenever a bad actor enters your virtual meeting. Then, you can report this intruder on Zoom’s website. And starting this coming weekend, Zoom will be releasing a new security feature built into the app, which will allow users to send a report to Zoom right from the security button should any unwanted interference arise.

Other Noteworthy Developments

Zoom announced that as of April 1, 2020, it would freeze all future product development except for data privacy and security updates for the following 90 days. Moreover, beginning April 18, 2020, every paid Zoom customer will be able to customize which data center regions their account can use for its real-time meeting traffic. By default, however, there will be no connection to any data centers in China beginning April 18, 2020 for all users. Additionally, users with an “.edu” registered email address are automatically given the highest level of security in their meetings, and this will continue. Zoom has begun to address user demands for a “kid-friendly” interface, but it has not yet launched any such interface.

Other virtual meeting platforms, such as GoToMeeting, have also enacted enhanced security protections in their respective applications. For example, GoToMeeting gathers cyber threat intel through partnerships including external intelligence communities, personal and professional sharing groups, and its own internal research to collect Indicators of Compromise or IoC data. IoC can include forensic data such as IP addresses, domains, hashes, and pulls them into its threat intelligence platform to reduce the risk of cyber threats.

Still though, platforms like Zoom and GoToMeeting urge users to utilize additional security measures as outlined in our previous blog post, and above, to provide the greatest level of privacy and data security for your virtual meetings.

Updates on Regulatory Guidance

On April 8th, Senator Edward Markey, whose priorities include telecommunications, technology, and privacy policy, urged the Federal Trade Commission (FTC) to publish industry cybersecurity guidelines “for companies that provide online conferencing services, as well as best practices for users that will help protect online safety and privacy during this pandemic and beyond.”

In Senator Markey’s letter, he urges that the guidance cover, at a minimum, the following topics:

  • Implementing secure authentication and other safeguards against unauthorized access;
  • Enacting limits on data collection and recording;
  • Employing encryption and other security protocols for securing data; and
  • Providing clear and conspicuous privacy policies for users.

Senator Markey also requests that the FTC develop best practices for online conferencing users, so that they can make informed, safe decisions when choosing and using these platforms. He requests that these best practices cover at least the following topics:

  • Identifying and preventing cyber threats such as phishing and malware;
  • Sharing links to online meetings without compromising security;
  • Restricting access to meetings via software settings; and
  • Recognizing that different versions of a company’s service may provide varying levels of privacy protection.

To date, the FTC has not published new guidelines.

Remember to have a plan and be prepared. Stay safe, everyone!

If you have any questions, please feel free to reach out to Donna UrbanKrishna Jani, or any member of Flaster Greenberg’s Telecommunications or Privacy & Data Security Groups.  

Donna T. Urban is a member of Flaster Greenberg’s Commercial Litigation and Environmental Law Departments concentrating her practice in telecommunications law, environmental regulation and litigation, and privacy and data security. She is a seasoned litigator, and for more than 20 years has successfully represented business clients in contract disputes, regulatory matters, and complex negotiations. She can be reached at donna.urban@flastergreenberg.com or 856.661.2283.

Krishna A. Jani is a member of Flaster Greenberg’s Litigation Department focusing her practice on complex commercial litigation. She is also a member of the firm’s cybersecurity and data privacy law practice groups. She can be reached at 215.279.9907 or krishna.jani@flastergreenberg.com.

To serve as a central repository of information and contributions from Flaster Greenberg attorneys on legal developments during the COVID-19 crisis, we have launched a COVID-19 Resource Page on our website.  Feel free to check back frequently for Flaster Greenberg’s ongoing analyses of important legal updates that may affect you or your business. 

  

What to Do When COVID-19 Impacts Your Alimony or Child Support

Word FAMILY LAW composed of wooden letters.

With the COVID-19 pandemic rattling our work, home, social, and personal lives at a rapidly-evolving pace, many families are dealing with unprecedented financial insecurity and uncertainty. This can be even more intimidating and confusing for divorced and separated families, where oftentimes there are court-ordered or contracted legal obligations that are challenged in the wake of these tumultuous financial times.

As a recipient of financial contributions incident to a divorce or dissolution, it can be daunting to worry about whether your ex-spouse or ex-partner will be able to continue to meet those obligations. Those obligations include things such as alimony, child support, or other monetary contributions to your family, such as payment towards college tuition or health insurance premiums. Unquestionably, folks rely upon those contributions in order to meet their needs and the needs of their family so it is understandable to want assurance that those contributions continue.

At the same time, an individual who is legally obligated to pay money to an ex-spouse or ex-partner may be experiencing a decline in their discretionary income as a direct result of the COVID-19 crisis. In both New Jersey and Pennsylvania, the governments have shut down or deeply curtailed almost all non-essential business practices, sidelining a large segment of the working class, through no fault of their own. Many individuals have taken pay cuts, are working reduced hours, have been forced to use PTO or sick time, or, in the worst case scenarios, have stopped working altogether, without pay. If this occurs, it can render it challenging, if not impossible, to satisfy all expenses in full and on time, including expenses like alimony or child support. Many folks find themselves faced with the difficult decision of choosing which bills to pay out of a limited supply of cash: Do I pay my mortgage in full, and slash my child support? Do I pay for health insurance, and skip my alimony? Should I stop paying anything to my ex until this is over? Can I just socially-distance myself entirely and hope this all goes away on its own?

These questions are valid, and there are equally compelling arguments on both sides as to how these issues should be addressed. Folks relying on the support of an ex-partner want (and need) to be paid, and folks obligated to provide support to an ex simply might not have the funds available.

If you find yourself on either side of this equation, it is important to address the situation early on before it spirals out of control. While rushing to initiate litigation might seem premature or perhaps not cost-effective, nonetheless you also don’t want to ignore the situation or engage in self-help mechanisms that do more harm than good. Below are some options for dealing with financial complications or disputes with your ex-spouse or ex-partner brought about by the COVID-19 crisis.

One good place to start is by opening the lines of communication with your ex-spouse or ex-partner. Transparency and honesty will go a long way towards understanding the situation from both sides. If you and your ex are able to reach an interim agreement about continued (but perhaps reduced) financial support on a short-term basis, you should contact an attorney who can codify that agreement into an appropriate legal document. This enables you and your ex to amicably reach an agreement without court intervention, which saves you both time and money, while also ensuring that your agreement is legally-enforceable should problems arise in the future.

If you and your ex-spouse or ex-partner are not in regular contact, have an acrimonious relationship, or simply cannot agree on a resolution, then it might be time to consult with an attorney. Your attorney can suggest interim financial arrangements that can be presented to your ex in the hopes of reaching an agreement. Sometimes all it takes is a little nudge from an attorney to compel both sides to put in the effort to achieve a resolution to emergent situations. If this is successful, then the agreement would be summarized in a legal document and made binding.

If all else fails and you and your ex-spouse or ex-partner cannot reach an agreement even with the assistance of attorneys, it might be necessary to seek court intervention. Despite the COVID-19 pandemic, most courts are attempting to operate as close to “normal” as possible, seeking to ensure that folks still have access to the judicial process as needed. The family courts are equipped to receive filings electronically and to schedule court appearances via telephone and video conferences.

In both New Jersey and Pennsylvania, there are laws that permit an individual to petition for a modification to their alimony or child support if that person’s financial circumstances have changed. A loss of income or cash flow due to COVID-19 could be viewed as a substantial, involuntary, and unforeseen change that would justify the court evaluating the situation to determine whether to provide appropriate relief. As the COVID-19 situation is unique as far as its widespread financial impact on New Jersey and Pennsylvania families, there is little precedential guidance to help us understand how the courts might respond to petitions regarding alimony and child support issues. However, below are some possible outcomes that might result from such litigation:

  1. The court could grant a temporary reduction to an obligor’s alimony and child support payments, with a mandatory re-evaluation to take place in 1-2 months, at which time the support figures could be increased back to their original amounts.
  2. The court could keep the alimony and child support at the same rate, but could suspend enforcement and collection efforts. Any deficiencies in payments would continue to accrue as “arrears” and the obligor would be required to pay back those arrears at a later date. Essentially, this would enable the obligor to pay less towards their obligations during the financial crisis while ensuring that the recipient of support is ultimately made whole at some point in the future.
  3. The court could look to alternative financial resources for both parties, examining each party’s respective access to alternate sources of cash. This could include exploration of lines of credit, loans against retirement assets, trust distributions, advances on inheritances, or relief to one or both parties under the Federal CARES Act. While every family’s situation will be unique, it is hoped that the courts will explore every option for getting folks through these tough times.

These are scary situations that are facing many people throughout our community right now, and it is completely understandable to worry about keeping your family financially secure while you also manage your family’s physical and emotional well-being, as well as your own. If you find that your legal rights or obligations pursuant to a divorce or dissolution have been negatively impacted by COVID-19, you should consult with an attorney today. Through diligence, advocacy, and creativity, it is possible to develop a plan that can help you and your family navigate these uncertain times with an emphasis on positive and fair results.

Know that you are not alone.

gambone_angie
As a shareholder and member of the firm’s Family Law Department, Angie Gambone concentrates her practice in the areas of complex family law, divorce and custody matters. She also focuses her practice on adoption, family formation and the family law needs of nontraditional and LGBT families. Angie can be reached at angie.gambone@flastergreenberg.com or 856.382.2217.

 

 

To serve as a central repository of information and contributions from Flaster Greenberg attorneys on legal developments during the COVID-19 crisis, we have launched a COVID-19 Resource Page on our website.  Feel free to check back frequently for Flaster Greenberg’s ongoing analyses of important legal updates that may affect you or your business. 

 

 

 

 

 

4 Ways To Keep Your Business Secure During The COVID-19 Pandemic

Cyber security concept businessman Lock on digital screen, contrast, virtual screen with a consultant doing presentation in the background Closed Padlock on digital, cyber security, key WannaCrypt

On Wednesday, March 11, 2020, the World Health Organization declared the outbreak of the coronavirus to be a pandemic. This is significant for several reasons. The first is that the way we interact has drastically, and must necessarily, change because of the contagiousness of the coronavirus and its effect on public health. Secondly, a public health scare such as this can adversely affect the health of a business’s cybersecurity and data privacy. Hackers and other cyber threat actors are capitalizing on the global concern over COVID-19. For example, Check Point researchers found that coronavirus-themed domains are over fifty (50) times more likely to be malicious than other domains and over 4,000 coronavirus-related domains have been registered since January 2020. In fact, a malicious website purporting to be the live map for COVID-19 global cases run by Johns Hopkins has been found to be circulating.

What does all of this mean? It means that your business, including your employees and clients, could be in danger if you don’t take precautionary measures to prevent the risk of a data breach.

How can small and mid-size businesses adapt quickly to ensure effective cybersecurity and data privacy protection right now? If your workforce has gone largely remote, you should focus your cybersecurity and data privacy efforts mainly on the following four areas most susceptible to a breach. This may help to mitigate the risk of a breach actually happening and limit any potential liability.

Below are four ways to keep your business safe from hackers and data breaches during this tumultuous time:

  1. Email Security
    • Make sure you and your staff know how to keep your email secure. Avoid opening emails, downloading attachments, or clicking on suspicious links sent from unknown or untrusted sources.
    • Verify unexpected attachments or links from people you know by contacting them through another method of communication like a phone call or text message.
    • Do not provide personal information to unknown sources like passwords, birthdates, and especially, social security numbers.
    • Be especially cognizant of emails with poor design, grammar, or spelling as this can be a sign of a phishing attempt.
  2. Password Protection and Multi-Factor Authentication
    • Use strong passwords on all of your accounts, and encourage your staff to do the same.
    • Avoid easy-to-guess words like names of pets, children, and spouses as well as common dates like birthdays.
  3. Web Safety
    • As noted above, there has been a massive influx of fake websites, whose creators are looking to take advantage of the fear surrounding the coronavirus.
    • Make sure that any websites that require the insertion of account credentials like usernames and passwords, along with those used to conduct financial transactions, are encrypted with a valid digital certificate to ensure your data is secure. Secure websites like these will typically have a green padlock located in the URL field and will begin with “https.”
    • While your workforce is working remotely, ensure that they are not using public computers and/or logging into public Wi-Fi connections to log into accounts and access sensitive information.
    • You may want to connect with an IT company or your in-house IT department to implement ad-blocking, script-blocking, and coin-blocking browser extensions to protect systems against malicious advertising attacks and scripts designed to launch malware.
    • Sign out of accounts and shut down computers and mobile devices when not in use.
  4. Device Maintenance 
    • Keep all hardware and software updated with the latest, patched version.
    • Run reputable antivirus or anti-malware applications on all devices and keep them updated with the latest version.
    • Create multiple, redundant backups of all critical and sensitive data and keep them stored off the network in the event of a ransomware infection or other destructive malware incident. This will allow you to recover lost files, if needed.

Lastly, if your business is not already protected by a cyber-insurance policy, now may be the time to consider obtaining coverage.

Small and mid-size businesses in the Delaware Valley should consider implementing the above cybersecurity and data privacy measures while adapting to a shifting health and security landscape in the wake of the coronavirus.

Stay safe, everyone!

corporate attorney philadelphia law firm


Krishna A. Jani
is a member of Flaster Greenberg’s Litigation Department focusing her practice on complex commercial litigation. She is also a member of the firm’s cybersecurity and data privacy law practice groups. She can be reached at 215.279.9907 or krishna.jani@flastergreenberg.com.

To serve as a central repository of information and contributions from Flaster Greenberg attorneys on legal developments during the COVID-19 crisis, we have launched a COVID-19 Resource Page on our website.  Feel free to check back frequently for Flaster Greenberg’s ongoing analyses of important legal updates that may affect you or your business. 

%d bloggers like this: