Author

 Ted Kobus & Pamela Jones Harbour
Twitter
LinkedIn
RSS
E-Mail

Profile of Ted Kobus & Pamela Jones Harbour

BakerHostetler
News & Commentary Posts: 1

Ted Kobus focuses his practice in the areas of privacy, data security, and intellectual property. He advises clients, trade groups, and organizations regarding data security and privacy risks, including compliance, developing breach response strategies, defense of regulatory actions, and defense of class action litigation. He counsels clients involved in breaches involving domestic and international laws, as well as other regulations and requirements. Having led more than 500 data breach responses, he has respected relationships with regulators involved in privacy concerns as well as deep experience helping clients confront privacy issues during the compliance risk management stages. He is invested in his client relationships and approaches engagements practically and thoughtfully. Ted is national co-leader of BakerHostelter's Privacy and Data Protection team. He is ranked in "Chambers USA: America's Leading Lawyers for Business" and was one of only three attorneys named an MVP by Law360 for Privacy & Consumer Protection in 2013. He is a regular contributor to BakerHostetler's Data Privacy Monitor blog and regularly speaks at major industry events regarding data breach response, risk management, and litigation issues affecting privacy, including being the only private attorney to speak at the National Association of Attorneys General on data security issues.

 

Pamela Jones Harbour serves as co-leader of BakerHostetler's national Privacy and Data Protection team, with a practice focusing on the areas of privacy, data protection, and antitrust law. She is recognized for her knowledge in the evolving areas of competition and consumer protection law as they relate to privacy and data security issues. She served as a Federal Trade Commissioner for almost seven years and spent a decade with the New York State Attorney General's Office. Pamela was the 2010 recipient of the Electronic Privacy Information Center's "Champion of Freedom Award" for her defense of consumer privacy as an FTC Commissioner. While at the FTC, she was frequently a leading or solo dissenter in situations where she advocated to vigorously uphold the letter and spirit of the nation's antitrust and consumer protection laws.

Articles by Ted Kobus & Pamela Jones Harbour
WebAuthn, FIDO2 Infuse Browsers, Platforms with Strong Authentication
John Fontana, Standards & Identity Analyst, Yubico,  9/19/2018
Turn the NIST Cybersecurity Framework into Reality: 5 Steps
Mukul Kumar & Anupam Sahai, CISO & VP of Cyber Practice and VP Product Management, Cavirin Systems,  9/20/2018
NSS Labs Files Antitrust Suit Against Symantec, CrowdStrike, ESET, AMTSO
Kelly Jackson Higgins, Executive Editor at Dark Reading,  9/19/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: Are you sure this is how we get our data into the cloud?
Current Issue
Flash Poll
The Risk Management Struggle
The Risk Management Struggle
The majority of organizations are struggling to implement a risk-based approach to security even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-17368
PUBLISHED: 2018-09-23
An issue was discovered in PublicCMS V4.0.180825. For an invalid login attempt, the response length is different depending on whether the username is valid, which makes it easier to conduct brute-force attacks.
CVE-2018-17369
PUBLISHED: 2018-09-23
An issue was discovered in springboot_authority through 2017-03-06. There is stored XSS via the admin/role/edit roleKey, name, or description parameter.
CVE-2018-17400
PUBLISHED: 2018-09-23
The PhonePe wallet (aka com.PhonePe.app) application 3.0.6 through 3.3.26 for Android might allow attackers to perform Account Takeover attacks by intercepting the user name and PIN during the initial configuration of the application.
CVE-2018-17401
PUBLISHED: 2018-09-23
The PhonePe wallet (aka com.PhonePe.app) application 3.0.6 through 3.3.26 for Android might allow attackers to perform Account Takeover attacks by exploiting its Forgot Password feature.
CVE-2018-17402
PUBLISHED: 2018-09-23
The PhonePe wallet (aka com.PhonePe.app) application 3.0.6 through 3.3.26 for Android might allow attackers to discover the Credit/Debit card number, expiration date, and CVV number.