News & Analysis as of

Cybersecurity Ransomware Corporate Counsel

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Hogan Lovells

Australia mandates first-of-its-kind reporting of ransomware payments

Hogan Lovells on

Australia has implemented a first-of-its kind requirement for eligible businesses to report ransomware payments. From 30 May 2025, eligible businesses that make a payment in response to a cyber security incident, or become...more

Robinson+Cole Data Privacy + Security Insider

A Year in Privacy and Security: Privacy Violations, Large-Scale Data Breaches, and Big Fines and Settlements

Robinson+Cole Data Privacy + Security Insider on

2024 was a year chock-full of data breaches and privacy violations. Many new data privacy and cybersecurity regulations were introduced (and became effective), and regulators sent a strong message to businesses that privacy...more

Mintz

Patch, Investigate, and Defend: Critical and High Vulnerabilities in Cleo Managed File Transfer Solutions Reportedly Under Attack

Mintz on

There is news coming from the U.S. cyber community for organizations that use Cleo’s software products: if your organization or your vendors use Cleo’s Cleo Harmony, VLTrader, or LexiCom products, you may be at heightened...more

BCLP

Navigating a Security Incident - Best Practices for Engaging Service Providers - September 2024

BCLP on

With the recent wave of ransomware and other security incidents, it is now more important than ever for impacted organizations to have a thorough understanding of each element of a proper data breach response. That includes...more

Akin Gump Strauss Hauer & Feld LLP

Cybersecurity After SolarWinds: Practical Guidance for CISOs Under the New Rules

Akin Gump Strauss Hauer & Feld LLP on

Judge Engelmayer’s 107-page dismissal of most of the U.S. Securities and Exchange Commission (SEC)’s claims against SolarWinds provides valuable guidance, and some comfort, for public companies and Chief Information Security...more

Alston & Bird

Top 10 Issues General Counsel Need to Know About Ransomware in 2024

Alston & Bird on

Threat actors are evolving. Our Privacy, Cyber & Data Strategy Team explains how ransomware gangs have changed their tactics and how companies can respond to the threat while navigating new scrutiny from investors and...more

Morrison & Foerster LLP

Top 5 SEC Enforcement Developments for March 2023

Morrison & Foerster LLP on

In order to provide an overview for busy in-house counsel and compliance professionals, we summarize below some of the most important SEC enforcement developments from the past month, with links to primary resources...more

Wiley Rein LLP

White House Pivots on Cyber: Voluntary Compliance Carrots Are Being Replaced By Big Regulatory Sticks

Wiley Rein LLP on

The White House released the long-anticipated National Cybersecurity Strategy on March 2, 2023 setting out five (5) pillars articulating key themes and Administration priorities. Coming more than two years into the Biden...more

Troutman Pepper Locke

Piecing It All Together: OFAC Combines Seven Years of Regulations, Amendments, and Interpretations All in One

Troutman Pepper Locke on

Your business was hit with a ransomware attack over the weekend, and the critical systems are locked up (i.e., encrypted). To unlock those valuable systems and continue operating the business, the threat actor demands...more

Genova Burns LLC

Potential Harm Enough For Class Action to Proceed in Data Breach Litigation

Genova Burns LLC on

The Third Circuit Court of Appeals has given new life to a putative class action suit led by a former employee of a company that suffered a ransomware attack, leading to her sensitive information being released onto the Dark...more

BCLP

Ransomware - why paying up earns no credit with the UK's Data Protection Authority and others

BCLP on

In a joint letter this summer, the UK’s data protection regulator (the ICO) and the UK’s National Cyber Security Centre (the NCSC) sought to convey some key messages to the legal profession relevant to advising clients...more

Faegre Drinker Biddle & Reath LLP

HHS Ransomware Report Details Revival of Dangerous LOTL Cyberattack

Faegre Drinker Biddle & Reath LLP on

On May 5, 2022, the U.S. Department of Health and Human Services (HHS) issued a report entitled “Ransomware Trends in the HPH Sector” (HHS Report) that reviewed key cybersecurity threats and trends affecting the U.S....more

Patterson Belknap Webb & Tyler LLP

Ransomware Attacks Case Studies Provide Rare Learning Opportunities

Patterson Belknap Webb & Tyler LLP on

Ransomware attacks have become headline news in the mainstream media, and a hot topic not only on this blog but in government circles. And with good reason as the United States suffered a staggering 421.5 million ransomware...more

Ballard Spahr LLP

Cyber Incident Reporting for Critical Infrastructure Act Becomes Law

Ballard Spahr LLP on

On March 15, 2022, President Joe Biden signed into law the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA), which increased funding for the federal Cybersecurity and Critical Infrastructure Agency (CISA) and...more

Woods Rogers

Proposed SEC Cybersecurity Rules Require Public Companies to Act Now

Woods Rogers on

This month, the Securities and Exchange Commission (SEC) proposed new cybersecurity disclosure rules for publicly traded companies. The comment period is ongoing, but the take-away for public companies is immediate: a public...more

Morgan Lewis

Update: Ukraine Conflict Has Implications for Cyberinsurance Policies, Including War Exclusions

Morgan Lewis on

The conflict in Ukraine has raised significant cybersecurity concerns for businesses in the United States and across the world, resulting in an increased focus on using cyberinsurance to mitigate any resulting losses. The...more

Jackson Lewis P.C.

Responding to the Kronos Cyber Attack – What Should Employers Be Thinking About?

Jackson Lewis P.C. on

According to reports, Kronos, the cloud-based, HR management service provider, suffered a data incident involving ransomware affecting its information systems. Kronos communicated that it discovered the incident late on...more

Lowenstein Sandler LLP

Riding the Wave of Cyber Insurance Claim Payments: A Trend Cresting or Crashing?

Lowenstein Sandler LLP on

Ransomware attacks are on the rise. Cyber criminals continue to exploit lax security measures, which have become more acute in the work-from-home environment, and hack into companies’ systems, encrypt their data, and then...more

Troutman Pepper Locke

Sued for a Data Breach Out of State? Don't Forget a Personal Jurisdiction Defense

Troutman Pepper Locke on

Entities sued for a data breach – even one that is consolidated into a multidistrict litigation proceeding in the defendant’s home state – should not forget the personal jurisdiction defense, which can provide a powerful tool...more

Fenwick & West LLP

OFAC Helps Those Who Help Themselves: How a Ransomware Response Plan Can Help Avoid Sanctions Enforcement for Ransom Payments

Fenwick & West LLP on

Many companies have a “no ransomware payment” stance until faced with a ransomware attack, especially an attack that causes significant business disruption. At that point, the company may reconsider its stance (or at least...more

Polsinelli

Department of the Treasury Issues New Advisory Regarding Ransomware Payments

Polsinelli on

On September 21, 2021, the U.S. Department of the Treasury’s Office of Foreign Assets Control (“OFAC”) released its Updated Advisory on Potential Sanctions Risks for Facilitating Ransomware Payments (the “Updated Advisory”)....more

Society of Corporate Compliance and Ethics...

[Virtual Event] Global Compliance Updates - November 2nd - 3rd, 5:55 pm - 8:15 pm GST

Society of Corporate Compliance and Ethics... on

Compliance teams looking to stay ahead of the changing landscape need to be up to date on the latest developments. Join us for Global Compliance Updates in collaboration with the DIFC Academy, on 2–3 November 2021. This...more

Goodwin

NYDFS Issues Ransomware Guidance Aimed At Combatting Rising Cyber Threats

Goodwin on

The exponential rise in ransomware attacks in the past year has everyone on high alert, not least of which are regulators. Following on the heels of a June 2, 2021 White House memo addressing ransomware prevention, on June...more

Society of Corporate Compliance and Ethics...

[Virtual Event] 2021 Atlanta Regional Compliance & Ethics Conference - August 13th, 8:25 am - 4:30 pm EDT

Society of Corporate Compliance and Ethics... on

Our Virtual Regional Compliance Conferences provide updates on the latest news in regulatory requirements, compliance enforcement, and strategies to develop effective compliance programs. Watch, listen, and ask questions from...more

McDermott Will & Emery

Top Takeaways - Cybersecurity & Insurance Coverage in the Age of Telehealth: Understanding and Mitigating Your Risk

McDermott Will & Emery on

With more frequent and more severe ransomware attacks against health care platforms and vendors and the increasing use of telemedicine, it is critical to understand how to proactively defend your organization using robust...more

39 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide