SolarWinds made a name for itself as the developer of tools for network monitoring that help small and large companies efficiently run their environment. While not a security-focused company from a product standpoint, the understanding was that the code behind SolarWinds’ tools was protected as intellectual property and that updates were safe to run until it turned out that both of these assumptions were wrong.
How Was the Compromise Detected?
In late 2020, FireEye, a company focused on cybersecurity and internationally involved in helping companies post cyber incident, detected some unusual activity on the FireEye network. FireEye detected it was hacked after the attackers tried to register a device to FireEye’s multi-factor authentication system using stolen credentials. The system then notified the employee, whose credentials were stolen, and alerted the FireEye security team of this new device. This notice triggered an internal investigation to learn who was trying to register this device. FireEye performed in-depth code analysis and determined that the intrusion originated with a SolarWinds product called Orion. Some analysts believe that attacking FireEye was a mistake by the attackers since it sped up detection of the SolarWinds hack. Read more
https://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.png00Privacy and Data Securityhttps://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.pngPrivacy and Data Security2021-03-23 09:28:132021-03-23 09:30:40SolarWinds – What Do We Know and What Can We Learn From It?
Happy spring! We are beginning to add resources to our online library, including recordings of two recent discussions from last week: (1) the joint YLD/PDS specialist discussion from March 16, “Becoming a Privacy Law Specialist: Exploring NC’s Newest Legal Specialization,” and (2) the Fireside Chat from March 17, “Managing Third-Party Privacy and Security Risks.”
We invite you to review the materials if you weren’t able to join or to revisit the materials at your leisure.
Here is a reminder of how to navigate the library.
How Do I Access the Library?
Click on “Communities.”
Scroll and find your community.
Click on the “Library” tab.
How Do I Find Content in the Library?
On the left side under folders, you will see varying folders.
When you click on a folder, the contents of the folder will pop up on the right side under “Folder Contents.”
https://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.png00Privacy and Data Securityhttps://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.pngPrivacy and Data Security2021-03-22 15:28:272021-03-22 15:37:14Privacy and Data Security Section Updates and Library How-To
Disputes between members of a family-owned or closely-held business or parties to a long-standing business relationship are similar to divorces in many ways – emotions run high and the parties may need to keep working together, like it or not. Instead of the best interests of the children, the common goal could be to keep a business that’s lasted for three generations alive or finish a construction project that will no longer be economically viable if one party pulls out and heads to court.
https://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.png00Litigationhttps://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.pngLitigation2021-03-22 09:01:052021-03-22 09:01:05Using Collaborative Law to Resolve Business Disputes – It’s Not Just for Divorce Anymore!
I would like to thank the North Carolina Bar Association Government & Public Sector Section for awarding me with a $500 scholarship to supplement my living expenses during my internship with the Wake County District Attorney’s Office. I applied for the scholarship this past summer by submitting my resume and a cover letter about my passion for public service.
I strive to live a life of service and make a difference. That goal is why I joined the North Carolina Army National Guard in high school. While attending East Carolina University, I followed my passion for service by striving to embody the university motto of “Servire” – “To Serve” – through various service roles within the Student Government Association and the Student Conduct Board. In my first year as a student representative, I sponsored more legislation than any other member, which led to positive changes in my community, ranging from healthier options at the dining hall to the installation of a crosswalk at a local intersection. I continued to serve in law school as the NCBA Student Representative and vice president, managing partner for the Veterans Pro Bono Project, and editor in chief of the Campbell Law Observer. As the managing partner for the Veterans Pro Bono Project, I led the transition from a project that lacked direction and opportunities to a project now approved by the faculty and Dean to provide pro bono discharge upgrade services.
While we’re all aware of the EEOC’s position on employers implementing mandatory COVID-19 vaccination policies — if not, take a minute to read the EEOC’s guidance — be aware that other laws may affect these policies. Specifically, because the current vaccines are authorized under emergency use authority, and not full FDA approval, there may be limits on the use of the vaccines.
https://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.png00Laborhttps://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.pngLabor2021-03-18 16:08:212021-03-18 16:59:14Another Twist to the Legality of Mandatory COVID-19 Vaccination Policies
SolarWinds made a name for itself as the developer of tools for network monitoring that help small and large companies efficiently run their environment. While not a security-focused company from a product standpoint, the understanding was that the code behind SolarWinds’ tools was protected as intellectual property and that updates were safe to run until it turned out that both of these assumptions were wrong.
How Was the Compromise Detected?
In late 2020, FireEye, a company focused on cybersecurity and internationally involved in helping companies post cyber incident, detected some unusual activity on the FireEye network. FireEye detected it was hacked after the attackers tried to register a device to FireEye’s multi-factor authentication system using stolen credentials. The system then notified the employee, whose credentials were stolen, and alerted the FireEye security team of this new device. This notice triggered an internal investigation to learn who was trying to register this device. FireEye performed in-depth code analysis and determined that the intrusion originated with a SolarWinds product called Orion. Some analysts believe that attacking FireEye was a mistake by the attackers since it sped up detection of the SolarWinds hack. Read more
https://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.png00Privacy and Data Securityhttps://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.pngPrivacy and Data Security2021-03-17 12:04:162021-03-23 09:31:16SolarWinds – What Do We Know and What Can We Learn From It?
As we enter our second year of COVID-19, let’s move from pivoting and the new normal to restoring ourselves, the legal profession, government employees, civil society, and ultimately the Earth.
Join us on April 22, 2021 via live webcastas the NCBA Government & Public Sector Section holds its annual CLE program. This program qualifies for 6.50 MCLE credit hours for North Carolina, including 1.50 for ethics/professional responsibility, 1.0 for substance abuse/mental health, and 1.0 for technology training.
During this program, hear from a great lineup of experts in their fields and attorneys at all levels of government as they focus on facing problems and the work of restoration.
https://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.png00GovernmentandPublicSectorhttps://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.pngGovernmentandPublicSector2021-03-17 11:12:052021-03-17 11:12:05'The Work of Restoration,' a CLE for Every Lawyer on Earth Day
On Thursday, March 25, 2021, the International Practice Section will hold a CLE covering a spectrum of topics including the state of U.S. immigration law, digital solutions to cross-border protection and data transfer issues, international arbitration developments, rules concerning product origin and domestic content, and the transition to LIBOR. To register, please click here.
https://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.png00International Practicehttps://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.pngInternational Practice2021-03-17 10:43:562021-03-17 10:47:14Making Sense of the Current State of International Law
The North Carolina General Assembly (NCGA) has recently enacted the Audiology and Speech-Language Pathology Compact (ASLP-IC), Psychology Interjurisdictional Compact (PsyPact) and is already a member of the Nurse Licensure Compact (NLC) and Physical Therapy Compact (PT Compact). NCGA has also introduced the Occupational Therapy Compact (OT Compact) and anticipates introduction of other Interstate Compact bills in the Allied Health fields. Accordingly, an understanding of the differences between Interstate Compacts and Universal Licensure Recognition Laws (previously introduced in the NCGA) bears clarification and is essential for administrative lawyers working with Occupational Licensing Boards. The Council of State Governments’ National Center for Interstate Compacts has created a virtual pamphlet to help explain these differences. Please see the virtual pamphlet here for information on common misunderstandings with stakeholders, legislators and attorneys alike as to the differences between the two vehicles for increased licensure portability and access to care.
Neither the North Carolina Bar Association nor the NCBA Paralegal Division has taken an official position on this issue.
On Jan. 22, 2021, the North Carolina Justice for All Project (NCJ4AP) team submitted a proposal to the North Carolina State Bar and the North Carolina Supreme Court seeking changes to N.C.G.S. § 84 (Unauthorized Practice of Law) to allow unlicensed law school graduates and qualified paralegals to provide limited legal services to low- and moderate-income North Carolinians. The proposal contemplates completion of certain requirements (e.g., examination, certification, education, experience) prior to licensing.
https://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.png00Paralegalshttps://ncbarblogprod.wpengine.com/wp-content/uploads/2018/06/Blog-Header-1-1030x530.pngParalegals2021-03-16 11:39:292021-04-07 11:59:39Limited Licensing Proposal - Watch the Presentation to the State Bar on March 23, 2021
SolarWinds – What Do We Know and What Can We Learn From It?
Featured PostsSolarWinds made a name for itself as the developer of tools for network monitoring that help small and large companies efficiently run their environment. While not a security-focused company from a product standpoint, the understanding was that the code behind SolarWinds’ tools was protected as intellectual property and that updates were safe to run until it turned out that both of these assumptions were wrong.
How Was the Compromise Detected?
In late 2020, FireEye, a company focused on cybersecurity and internationally involved in helping companies post cyber incident, detected some unusual activity on the FireEye network. FireEye detected it was hacked after the attackers tried to register a device to FireEye’s multi-factor authentication system using stolen credentials. The system then notified the employee, whose credentials were stolen, and alerted the FireEye security team of this new device. This notice triggered an internal investigation to learn who was trying to register this device. FireEye performed in-depth code analysis and determined that the intrusion originated with a SolarWinds product called Orion. Some analysts believe that attacking FireEye was a mistake by the attackers since it sped up detection of the SolarWinds hack.
Read more
Privacy and Data Security Section Updates and Library How-To
Privacy and Data SecurityHello, section members!
Happy spring! We are beginning to add resources to our online library, including recordings of two recent discussions from last week: (1) the joint YLD/PDS specialist discussion from March 16, “Becoming a Privacy Law Specialist: Exploring NC’s Newest Legal Specialization,” and (2) the Fireside Chat from March 17, “Managing Third-Party Privacy and Security Risks.”
We invite you to review the materials if you weren’t able to join or to revisit the materials at your leisure.
Here is a reminder of how to navigate the library.
How Do I Access the Library?
How Do I Find Content in the Library?
Using Collaborative Law to Resolve Business Disputes – It’s Not Just for Divorce Anymore!
Litigation SectionBy Lisa P. Sumner
Disputes between members of a family-owned or closely-held business or parties to a long-standing business relationship are similar to divorces in many ways – emotions run high and the parties may need to keep working together, like it or not. Instead of the best interests of the children, the common goal could be to keep a business that’s lasted for three generations alive or finish a construction project that will no longer be economically viable if one party pulls out and heads to court.
Read more
NCBA Government & Public Sector Section Summer Scholarship
Law Student Division, Young Lawyers DivisionBy R. Wyatt Bland
I would like to thank the North Carolina Bar Association Government & Public Sector Section for awarding me with a $500 scholarship to supplement my living expenses during my internship with the Wake County District Attorney’s Office. I applied for the scholarship this past summer by submitting my resume and a cover letter about my passion for public service.
I strive to live a life of service and make a difference. That goal is why I joined the North Carolina Army National Guard in high school. While attending East Carolina University, I followed my passion for service by striving to embody the university motto of “Servire” – “To Serve” – through various service roles within the Student Government Association and the Student Conduct Board. In my first year as a student representative, I sponsored more legislation than any other member, which led to positive changes in my community, ranging from healthier options at the dining hall to the installation of a crosswalk at a local intersection. I continued to serve in law school as the NCBA Student Representative and vice president, managing partner for the Veterans Pro Bono Project, and editor in chief of the Campbell Law Observer. As the managing partner for the Veterans Pro Bono Project, I led the transition from a project that lacked direction and opportunities to a project now approved by the faculty and Dean to provide pro bono discharge upgrade services.
Read more
Another Twist to the Legality of Mandatory COVID-19 Vaccination Policies
Labor & Employment LawWhile we’re all aware of the EEOC’s position on employers implementing mandatory COVID-19 vaccination policies — if not, take a minute to read the EEOC’s guidance — be aware that other laws may affect these policies. Specifically, because the current vaccines are authorized under emergency use authority, and not full FDA approval, there may be limits on the use of the vaccines.
Read more
SolarWinds – What Do We Know and What Can We Learn From It?
Privacy and Data SecuritySolarWinds made a name for itself as the developer of tools for network monitoring that help small and large companies efficiently run their environment. While not a security-focused company from a product standpoint, the understanding was that the code behind SolarWinds’ tools was protected as intellectual property and that updates were safe to run until it turned out that both of these assumptions were wrong.
How Was the Compromise Detected?
In late 2020, FireEye, a company focused on cybersecurity and internationally involved in helping companies post cyber incident, detected some unusual activity on the FireEye network. FireEye detected it was hacked after the attackers tried to register a device to FireEye’s multi-factor authentication system using stolen credentials. The system then notified the employee, whose credentials were stolen, and alerted the FireEye security team of this new device. This notice triggered an internal investigation to learn who was trying to register this device. FireEye performed in-depth code analysis and determined that the intrusion originated with a SolarWinds product called Orion. Some analysts believe that attacking FireEye was a mistake by the attackers since it sped up detection of the SolarWinds hack.
Read more
‘The Work of Restoration,’ a CLE for Every Lawyer on Earth Day
Government & Public SectorAs we enter our second year of COVID-19, let’s move from pivoting and the new normal to restoring ourselves, the legal profession, government employees, civil society, and ultimately the Earth.
Join us on April 22, 2021 via live webcast as the NCBA Government & Public Sector Section holds its annual CLE program. This program qualifies for 6.50 MCLE credit hours for North Carolina, including 1.50 for ethics/professional responsibility, 1.0 for substance abuse/mental health, and 1.0 for technology training.
During this program, hear from a great lineup of experts in their fields and attorneys at all levels of government as they focus on facing problems and the work of restoration.
Read more
Making Sense of the Current State of International Law
International Law, International Law & Practice, International PracticeOn Thursday, March 25, 2021, the International Practice Section will hold a CLE covering a spectrum of topics including the state of U.S. immigration law, digital solutions to cross-border protection and data transfer issues, international arbitration developments, rules concerning product origin and domestic content, and the transition to LIBOR. To register, please click here.
Interstate Compacts and Universal Licensure Recognition Laws
Administrative LawThe North Carolina General Assembly (NCGA) has recently enacted the Audiology and Speech-Language Pathology Compact (ASLP-IC), Psychology Interjurisdictional Compact (PsyPact) and is already a member of the Nurse Licensure Compact (NLC) and Physical Therapy Compact (PT Compact). NCGA has also introduced the Occupational Therapy Compact (OT Compact) and anticipates introduction of other Interstate Compact bills in the Allied Health fields. Accordingly, an understanding of the differences between Interstate Compacts and Universal Licensure Recognition Laws (previously introduced in the NCGA) bears clarification and is essential for administrative lawyers working with Occupational Licensing Boards. The Council of State Governments’ National Center for Interstate Compacts has created a virtual pamphlet to help explain these differences. Please see the virtual pamphlet here for information on common misunderstandings with stakeholders, legislators and attorneys alike as to the differences between the two vehicles for increased licensure portability and access to care.
Limited Licensing Proposal – Watch the Presentation to the State Bar on March 23, 2021
Featured Posts, Paralegal DivisionNeither the North Carolina Bar Association nor the NCBA Paralegal Division has taken an official position on this issue.
On Jan. 22, 2021, the North Carolina Justice for All Project (NCJ4AP) team submitted a proposal to the North Carolina State Bar and the North Carolina Supreme Court seeking changes to N.C.G.S. § 84 (Unauthorized Practice of Law) to allow unlicensed law school graduates and qualified paralegals to provide limited legal services to low- and moderate-income North Carolinians. The proposal contemplates completion of certain requirements (e.g., examination, certification, education, experience) prior to licensing.
The documents submitted include the following:
Read more