By now you’ve probably heard of the creatively-named “Heartbleed” bug. Heartbleed, which has its own slick logo courtesy of the organization that discovered the bug, is a flaw in certain versions of SSL (the encryption protocal used by most websites worldwide to protect information like passwords and account names). Disturbingly, the bug has been present for over two years, though it only recently came to light. There’s a good chance your business has either been vulnerable itself, or has transmitted information to a vulnerable third party site within the past two years. Here’s a helpful (but non-exhaustive) list of affected sites.
Recent media attention has highlighted a disturbing trend: information security breaches are on the rise. These breaches can cost a business a lot of time and money. They can also result in a loss of customer trust and brand reputation – valuable commodities that are easier to lose than to earn back. While most businesses try to mitigate the risk of a security breach, many may not be aware of their requirements under Maine law in the event that a breach occurs. Read on after the jump for more information.