News & Analysis as of

Cybersecurity

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Alston & Bird

Microsoft Announces Two New On-Premises SharePoint Vulnerabilities

Alston & Bird on

Introduction - On July 19, 2025, Microsoft announced two new vulnerabilities that are actively being exploited (CVE-2025-49704 and CVE-2025-49706) and that relate to on-premises Microsoft SharePoint instances that are exposed...more

Lighthouse

Data Loss Prevention in the Age of AI: Deploying Microsoft Purview DLP

Lighthouse on

The second post in our data loss prevention series offers a roadmap for implementing Microsoft Purview DLP to secure sensitive data in AI-influenced environments. From discovery and classification to policy enforcement,...more

Fisher Phillips

New California Regs Will Impact Your AI and Privacy Policies: FAQs on Automated Decision-Making, Risk Assessments, and...

Fisher Phillips on

California regulators unanimously approved a sweeping set of regulations on July 24 governing the use of automated decision-making technology (ADMT) and mandating risk assessments and cybersecurity audits for businesses...more

Nutter McClennen & Fish LLP

Nutter Bank Report: July 2025

Nutter McClennen & Fish LLP on

In the wake of the Guiding and Establishing National Innovation for U.S. Stablecoins Act (GENIUS Act), the federal banking agencies have issued joint guidance to provide clarity on supervisory expectations for banks that...more

Goodwin

America’s AI Action Plan Emphasizes Governance and Risk Management to Promote the Secure and Safe Adoption of AI Tools

Goodwin on

On July 23, 2025, the Trump Administration released its AI Action Plan (“the Plan”), a long-anticipated roadmap for the federal government’s approach to AI governance that presents a number of implications for businesses...more

Goodwin

California’s New Privacy and Cybersecurity Regulations on Risk Assessments, Automated Decision making and Cybersecurity Audits:...

Goodwin on

During a Board Meeting on July 24, 2025, the California Privacy Protection Agency (CPPA) unanimously approved the long-awaited final text of its second rulemaking package, implementing a broad swath of new requirements...more

American Conference Institute (ACI)

[Event] National Conference on AI Law, Ethics, Safety & Compliance - October 8th - 9th, Washington, DC

American Conference Institute (ACI) on

ACI’s National Conference on AI Law, Ethics, Safety & Compliance delivers a practical roadmap to implement and evolve your AI strategy while navigating its legal, ethical, and technical complexities. Gain actionable...more

Constangy, Brooks, Smith & Prophete, LLP

What the Sensitive Data Rule means for “bulk data” and National Security compliance

Constangy, Brooks, Smith & Prophete, LLP on

As of July 9, the U.S. Department of Justice has begun full enforcement of a sweeping new data regulation known as the Sensitive Data Rule, or “SDR.” Implemented under President Biden’s Executive Order 14117, the SDR marks a...more

Ropes & Gray LLP

U.S. Cybersecurity Sector Recap

Ropes & Gray LLP on

M&A activity in the cybersecurity sector is on pace to exceed 2024 volume by 10% in 2025, with continued consolidation as larger firms acquire niche players to enhance capabilities or expand product offerings. The...more

Whiteford

Client Alert: The New Terrain for Going Public—Strategic Insight for Capital Raisers Amid Regulatory Change

Whiteford on

Imagine a small, fast-growing tech company preparing to go public in 2025. The leadership team, relying on practices that were standard just a few years ago, drafts generic risk disclosures, leans on flexible governance...more

Hanzo

Your IP Is Everywhere: How to Protect and Collect Sensitive Content Across Collaboration Tools

Hanzo on

When a key engineer leaves for a competitor, they can take more than just experience, they may walk away with years of intellectual property hidden in code reviews, issue tickets, and chat threads. As ideas now flow across...more

Orrick, Herrington & Sutcliffe LLP

HealthTech Due Diligence: Key Privacy/Security Factors

Orrick, Herrington & Sutcliffe LLP on

Join Thora Johnson and Jeremy Sherer to learn about: Evaluating compliance through privacy notices Key questions to address, from leadership accountability to employee training...more

K2 Integrity

Information Leaks: How to Assess the Impact, Investigate the Cause, and Reduce the Likelihood of Future Breaches

K2 Integrity on

Information leaks can range from internal decisions and salary data to intellectual property, strategy documents, or board minutes. Whether caused by accident or intent, all leaks demand immediate, structured action. Even...more

Spilman Thomas & Battle, PLLC

Decoded - Technology Law Insights, V 6, Issue 7, July 2025

Spilman Thomas & Battle, PLLC on

Welcome to our seventh issue of 2025 of Decoded - our technology law insights e-newsletter. What does the US GENIUS Act Mean for Stablecoins? “The White House categorically states it is a historic piece of legislation...more

Stoel Rives - Global Privacy & Security Blog®

Mid-Summer Update on AI, Privacy, and Cybersecurity Developments

Stoel Rives - Global Privacy & Security Blog® on

In the world of AI, a month is an eternity. In my last article, just over a month ago, I wrote about the much-discussed proposed 10-year moratorium on the enforcement of state AI laws. Ultimately, the Senate voted against it,...more

Katten Muchin Rosenman LLP

Privacy, Data and Cybersecurity Quick Clicks | Issue 31

Katten Muchin Rosenman LLP on

Katten's Privacy, Data and Cybersecurity Quick Clicks is a monthly newsletter highlighting the latest news and legal developments involving privacy, data and cybersecurity issues across the globe....more

Wilson Sonsini Goodrich & Rosati

CPPA Approves New CCPA Regulations on AI, Cybersecurity, and Risk Governance, and Advances Updated Data Broker Regulations

Wilson Sonsini Goodrich & Rosati on

On July 24, 2025, the California Privacy Protection Agency (CPPA) Board voted to approve a long-awaited rulemaking package imposing substantial new compliance obligations on businesses subject to the California Consumer...more

Robinson+Cole Data Privacy + Security Insider

CISA + Partners Release Advisory on Scattered Spider

Robinson+Cole Data Privacy + Security Insider on

On July 29, 2025, the Cybersecurity & Infrastructure Security Agency (CISA), along with the Federal Bureau of Investigation, Canadian Centre for Cyber Security, Royal Canadian Mounted Police, the Australian Cyber Security...more

Mayer Brown

Reducing Legal Risks From Ransomware Attacks: Lessons from Scattered Spider

Mayer Brown on

Leading businesses continue to suffer cyber attacks at the hands of sophisticated ransomware groups. For example, the threat group “Scattered Spider” (also known as UNC3944, Octo Tempest, 0ktapus) is once again making...more

Mintz - Venture Capital & Emerging Companies...

Mintz Venture Watch — Volume 8: A Report on Deal Trends from 2024 and H1 2025

Mintz - Venture Capital & Emerging Companies... on

Despite continued macroeconomic headwinds and a cautious investment climate, Mintz’s Venture Capital and Emerging Companies practice remained highly active throughout 2024 and into the first half of 2025. Our team advised on...more

Wyrick Robbins Yates & Ponton LLP

California’s New CCPA Cybersecurity Audit Regulations: A Roadmap to “Reasonable” Security?

Wyrick Robbins Yates & Ponton LLP on

Last week, the California Privacy Protection Agency (“Agency”) approved adoption of detailed new regulations under the CCPA that will include (among other notable components) a rule requiring annual cybersecurity audits for...more

Jones Day

EU Standards for Threat-Led Penetration Testing: New Cyber Compliance Imperatives for Financial Institutions

Jones Day on

The EU has introduced Delegated Regulation (EU) 2025/1190, establishing the first harmonized standards for threat-led penetration testing ("TLPT") across the financial sector. The regulation aims to strengthen the cyber...more

Gardner Law

Why Every Manufacturer Needs a Robust Information Security Program

Gardner Law on

Drug and device manufacturers are increasingly targeted by cyber threats that can compromise patient safety, intellectual property, and other critical data and systems, while also facing new regulatory demands. As regulators...more

Davis Wright Tremaine LLP

California Privacy Regulator Finalizes Automated Decisionmaking, Cybersecurity, and Risk Assessment Regulations

Davis Wright Tremaine LLP on

At its latest meeting, the CPPA voted to finalize its regulations governing automated decisionmaking tools, cybersecurity audits, and privacy risk assessments - On July 24, the California Privacy Protection Agency ("CPPA")...more

Bricker Graydon LLP

Ohio House Bill 96 Ushers in New Era of Cybersecurity Compliance for Local Governments and School Districts

Bricker Graydon LLP on

On June 30, 2025, Governor Mike DeWine signed into law (HB 96), a cybersecurity mandate that applies to all political subdivisions in Ohio—including counties, municipalities, townships, and school districts. ...more

21,393 Results
 / 
View per page
Page: of 856
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide