Linn Foster Freedman

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She is a member of the Business Litigation Group and the Financial Services Cyber-Compliance Team, and chair’s the firm’s Data Privacy and Security Team. Linn focuses her practice on compliance with all state and federal privacy and security laws and regulations. She counsels a range of public and private clients from industries such as construction, education, health care, insurance, manufacturing, real estate, utilities and critical infrastructure, marine and charitable organizations, on state and federal data privacy and security investigations, as well as emergency data breach response and mitigation. Linn is an Adjunct Professor of the Practice of Cybersecurity at Brown University and an Adjunct Professor of Law at Roger Williams University School of Law. Prior to joining the firm, Linn served as assistant attorney general and deputy chief of the Civil Division of the Attorney General’s Office for the State of Rhode Island. She earned her J.D. from Loyola University School of Law and her B.A., with honors, in American Studies from Newcomb College of Tulane University. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.

Subscribe to all posts by Linn Foster Freedman

Capital One Required to Produce Forensic Report in Class Action

By Linn Foster Freedman on May 28, 2020 Posted in Cybersecurity

As a litigator, when responding to any security incident, thoughtful consideration is given to the possibility that the security incident may wind up in litigation, and therefore, certain decisions are made in anticipation of that litigation. Without getting into the details of the legal doctrines of attorney-client privileges, work product doctrine, and in anticipation of … Continue Reading

Have Questions About CMMC? Don’t We All

By Linn Foster Freedman on May 28, 2020 Posted in New + Now

I had the pleasure of participating as a panelist this week for companies primarily involved in the maritime industry, and one of the topics discussed was the Department of Defense’s (DOD) Cybersecurity Maturity Model Certification Program (CMMC). The discussion generated questions that I thought merited sharing. Simply put, the DOD’s CMMC Program was designed to … Continue Reading

Privacy Tip #240 – Update iPhone OS as Soon as Possible for Jailbreak Zero-Day Vulnerability

By Linn Foster Freedman on May 28, 2020 Posted in Drone Privacy, Privacy Tips

We have urged readers in the past to pay attention to the pushes received from mobile phone manufacturers to update operating systems. Although the pushes claim that new features are included, there are also patches included to plug known vulnerabilities. If you keep pushing “later,” and you don’t update as soon as possible, those vulnerabilities … Continue Reading

Texas Court System Hit with Ransomware

By Linn Foster Freedman on May 14, 2020 Posted in Cybersecurity

The Office of Court Administration in Texas (OCA) confirmed late last week that it is the victim of a ransomware attack. The OCA stated that it would not pay the ransom. “OCA was able to catch the ransomware and limit its impact, and will not pay any ransom…Work continues to bring all judicial resources and … Continue Reading

Hackers Spoofing Zoom to Obtain Credentials and Passwords

By Linn Foster Freedman on May 14, 2020 Posted in New + Now

After incidents of Zoom “bombing,” including a recent intrusion by hackers to disrupt a church service with foul content (don’t these guys have better things to do?), it has been reported that hackers are now taking advantage of the surge in the use of Zoom for videoconferencing to spoof Zoom invites to try to obtain … Continue Reading

Privacy Tip #239 – Hackers Know How to Embarrass You

By Linn Foster Freedman on May 14, 2020 Posted in Privacy Tips

There have been numerous examples of how hackers can get hold of sensitive and deeply personal information and use it against individuals to embarrass and extort them into sending money or compromising pictures to the hackers to prevent the information from being posted on the web. These examples include cyberbullying, online love scams, blackmail through … Continue Reading

OCR Issues Guidance About Media Access to Health Care Facilities

By Linn Foster Freedman and Jean Tomasco on May 7, 2020 Posted in Coronavirus, Health Information Privacy, HIPAA and Health Information

These days, news stations are frequently running stories concerning people being treated for COVID-19, the providers working tirelessly to care for them, and politicians visiting health care facilities for a first-hand look at the crisis. In response to the media interest, the Office for Civil Rights (OCR) issued guidance on May 5, 2020 to healthcare … Continue Reading

Privacy Tip #238 – Coronavirus Charity Scams

By Linn Foster Freedman on May 7, 2020 Posted in Coronavirus, Privacy Tips

I think that people in general are decent and good. There are always some bad apples, but during crises most people want to help others. During the coronavirus pandemic, many people are doing everything they can to help others, including assisting neighbors, family members, friends and health care workers. Charitable organizations have stepped up to … Continue Reading

Adult Streaming Site Leaves 7TB of Users’ Information Unsecured

By Linn Foster Freedman on May 6, 2020 Posted in Cybersecurity, Data Breach

Live adult streaming website CAM4 has reportedly not secured 7TB of users’ information, which may be able to be used for blackmail and identity theft purposes, according to researchers from Safety Detectives. According to reports, CAM4 users pay to watch live streamed explicit adult content from consenting amateur performers who film themselves and post the … Continue Reading

ExecuPharm Data Stolen in Ransomware Attack Published on Internet

By Linn Foster Freedman on April 30, 2020 Posted in Cybersecurity

In a growing trend, pharmaceutical company ExecuPharm became the victim of a ransomware attack on March 13, 2020, by the CLOP ransomware group, which exfiltrated its data and then posted it on the Internet. Apparently, ExecuPharm didn’t pay the ransom, and then paid the price anyway by having its data compromised and posted by the … Continue Reading

Shade Ransomware Group Shuts Down

By Linn Foster Freedman on April 30, 2020 Posted in Cybersecurity

Some good news in the ransomware world, which is so rare these days. The Shade (Troldesh) ransomware group has retired and is shutting down. When do you ever hear that a ransomware group is shutting down? According to reports, Shade has publicly announced that it is retiring (apparently it has made enough money to do … Continue Reading

Small Business Administration Loan Portal Compromised

By Linn Foster Freedman on April 30, 2020 Posted in Coronavirus, New + Now

Following the devastating impact of the coronavirus on small businesses, many small businesses applied for a disaster loan through the Small Business Administration (SBA) for relief. Small businesses that qualify for the disaster loan program, which is different than the Paycheck Protection Program offered by the SBA, can apply for the loan by uploading the … Continue Reading

Privacy Tip #237 – Nintendo Users: Change Your Password and Enable MFA

By Linn Foster Freedman on April 30, 2020 Posted in Children's Privacy, Privacy Tips

Nintendo has shut down some NNID logins and has told Switch owners to lock down their accounts following a series of fraudulent attacks. Nintendo has confirmed that it suffered an attack by hackers who accessed some accounts and are using PayPal accounts linked to the accounts to purchase items fraudulently. According to Nintendo, approximately 160,000 … Continue Reading

Privacy, Security and Data Loss Prevention

By Linn Foster Freedman on April 23, 2020 Posted in New + Now

I always enjoy hosting and participating in the CISO Executive Network meetings. The meetings offer Chief Information Security Officers (CISOs) the opportunity to discuss together ways they can improve security in their organizations, get ideas from each other on strategies and products, and vent with colleagues about particular issues and complaints. It gives me great … Continue Reading

Privacy Tip #236 – Foreign Government-Backed Phishing Attacks Pose as Fast Food Chains

By Linn Foster Freedman on April 23, 2020 Posted in Coronavirus, Privacy Tips

Google has warned users in a blog article that nation state-backed hackers are using the COVID-19 crisis to ramp up phishing attempts and, in one example, are posing as American fast food franchises and sending malicious emails with fake offers and coupons to government officials and health care workers. Google has identified over 12 government-backed … Continue Reading

Cognizant Confirms Maze Ransomware Attack

By Linn Foster Freedman on April 22, 2020 Posted in Uncategorized

The criminals behind the Maze ransomware [view recent related posts here and here] have gone big and hit Cognizant, one of the largest technology consulting companies in the U.S., with its nasty ransomware. Cognizant stated on its website that it “can confirm that a security incident involving our internal systems, and causing service disruptions for … Continue Reading

Sodinokibi Hackers Switch Payment Mechanism to Monero

By Linn Foster Freedman on April 16, 2020 Posted in Cybersecurity, Virtual Currency

The hackers behind the Sodinokibi/REvil ransomware have reportedly switched their demands for payment from Bitcoin or Ethereum to Monero cryptocurrency to try to prevent law enforcement from tracking payments. The hackers reportedly advertised the switch in a posting to an online hacker and malware forum, and admitted that the switch from Bitcoin to Monero is … Continue Reading

Interpol Issues Alert on Increased Risk of Ransomware Attacks Against COVID-19 Medical Organizations

By Linn Foster Freedman on April 16, 2020 Posted in Coronavirus, New + Now

Interpol has issued an alert to global law enforcement agencies about the increased risk of ransomware attacks on hospitals, health care providers and other organizations on the front line of response to the COVID-19 pandemic. The Purple Notice, issued to all 194 member countries, notified them that Interpol’s Cybercrime Threat Response team has detected a … Continue Reading

Privacy Tip #235 – Economic Stimulus Check Scams

By Linn Foster Freedman on April 16, 2020 Posted in Coronavirus, Privacy Tips

In the past week, the United States government started issuing Economic Impact Payments (EIP) of up to $1,200 per qualified individual and $500 per child. The amount of the EIP received depends on one’s adjusted gross income from the 2019 (or 2018) federal tax filing. If a taxpayer who is qualified to receive the check … Continue Reading

FBI Issues Warning of Increased BEC During COVID-19 Pandemic

By Linn Foster Freedman on April 9, 2020 Posted in Coronavirus, Cybersecurity

On April 6, 2020, the Federal Bureau of Investigation (FBI) issued a warning to companies to be aware of an increase in business email compromises (BEC) entitled “FBI Anticipates Rise in Business Email Compromise Schemes Related to the Covid-19 Pandemic.” Although BECs have been around for years, attackers are using the fact that many employees … Continue Reading

Working from Home During the Pandemic? Turn Alexa and Siri Off!

By Linn Foster Freedman on April 9, 2020 Posted in Coronavirus, Data Privacy, New + Now

The transition from work-from-the-office to work-from-home has been rapid during the pandemic. All of a sudden, millions of workers are working from home, while data security personnel were not able to plan and operationalize the transition in an optimal way. Many security measures are being put in place now as everyone settles into the new … Continue Reading

Privacy Tip #234 – Children’s Privacy During the Pandemic

By Linn Foster Freedman on April 9, 2020 Posted in Children's Privacy, Coronavirus, Data Privacy, Privacy Tips

Kids are at home all day now, remote learning and surfing the web more than ever before. Parents are working from home too, and understandably are not always able to monitor and supervise their children’s computer use as much as they should or would like to. Scammers, fraudsters and evil doers know this and are … Continue Reading

City of L.A. Email Blunder Exposes COVID-19 Test Results to All Recipients

By Linn Foster Freedman on April 7, 2020 Posted in Coronavirus, Cybersecurity

Although email seems to be the preferred method of communication during the coronavirus pandemic, an error made by a City of Los Angeles employee is one to learn from and avoid repeat. Unfortunately, when emailing COVID-19 results to multiple individuals, instead of blind copying the recipients with the results, a staff member from the City … Continue Reading

This Blog/Website is made available by the lawyer or law firm publisher for educational purposes only as well as to give you general information and a general understanding of the law, not to provide specific legal advice. By using this blog site you understand that there is no attorney client relationship between you and the Blog/Website publisher. The Blog/Website should not be used as a substitute for competent legal advice from a licensed professional attorney in your state. Any opinions expressed on this Blog/Website are opinions only of the author, expressed at the time the material is written based on information available to the author at that time, and are not opinions of the author's law firm or any of the author's or the law firm's clients. This Blog/Website is not intended to be attorney advertising. To the extent it might be deemed to be attorney advertising, it should not be considered advertising or to be seeking legal work in any jurisdiction in which the author is not admitted to practice law (i.e., jurisdictions other than Connecticut, Massachusetts, and various federal courts).