As far too many companies victimized by data breaches can attest, we are in a “blame the victim” environment, where the breach victim is treated like an accessory to the crime. Time and time again, Congress, regulators, the courts and the media treat victim companies as if they are guilty until proven innocent, or rather “negligent until proven reasonable.”
Here, Jason M. Weinstein and Michael A. Vatis of the law firm Steptoe & Johnson LLP, share how they are helping their clients navigate cybersecurity issues.