Episode 381 -- NAVEX's 2025 Annual Hotline Report
AI and the False Claims Act
Disparate Impact & Enforcement Rollbacks: What’s the Tea in L&E?
What’s in Your Operating Agreement? Legal Tips for Healthcare Providers
A New Brand of Uncertainty? — PE Pathways Podcast
The Rise of OTAs in Defense Contracting: Opportunities, Risks, and What Contractors Need to Know
Breaking the Cycle: Flooding, Infrastructure, and Climate Law in Practice
No Password Required: Former Lead Attorney at U.S. Cyber Command, Cyber Law Strategist, and Appreciator of ‘Mad Men’ Hats
Understanding BBB Ratings: Building Trust and Mitigating Risks — Regulatory Oversight Podcast
Beyond the Bylaws: The Medical Staff Show - Need to Know: How to Manage Medical Staff Confidentiality and Privilege Protections
False Claims Act Insights - The Mathematics of Nuclear FCA Verdicts
PODCAST: Williams Mullen's Benefits Companion - Cost, Care and Captives: A Mid-Size Employer’s Guide to Benefit Trends
Compliance Tip of the Day: Citibank and Continuous Monitoring
Lawyers Beware: There Could Be Serious Ethics Issues With The New AI Browsers
Compliance and AI: Navigating Risk Management in the AI Era with Gaurav Kapoor
Data Driven Compliance: Understanding the UK’s New Failure to Prevent Fraud Offense with Sam Tate
Avoiding a Bored Board
Compliance Tip of the Day: Crowd Sourcing Risk Intelligence
We get Privacy for work – Episode 6: The Potential Privacy Risks Inherent to Mergers and Acquisitions
The administration has signaled a potential softening of cyber regulation for domestic entities, with increasing focus on national security priorities and preparing for the future....more
The cybercrime group known as Scattered Spider is at it again, according to Google’s Threat Intelligence Group. This criminal group is known to focus its cyber attacks on one sector at a time. Last spring, it was the retail...more
On June 12, 2025 the Securities and Exchange Commission (“SEC”) formally withdrew fourteen outstanding rule proposals issued by the prior administration. Although most observers doubted that the current Commission would adopt...more
After years of regulatory uncertainty, the Trump administration has signaled a new approach to digital assets, including by establishing a working group focused on digital assets and nominating crypto-friendly chairs to the...more
A rising tide does not necessarily lift all boats when it comes to increasing compliance in the world of crypto asset investments. In fact, the existence of a bull market or a seemingly friendly regulatory environment can...more
While the cryptocurrency industry is still relatively young, its adoption by various economic sectors and the evolution of the technology itself is growing, along with the tokenization of assets, AI-powered smart contracts,...more
On December 11, 2024, the Women’s White Collar Defense Association (WWCDA) hosted “Views from the Top,” featuring the following government officials from the DOJ, SEC, CFTC, and FTC discussing current and future enforcement...more
Publications & Advisories - November 2024 – Kathleen Benway, Jennifer Everett, Alysa Austin, and Kristen Bartolotta published “Federal Trade Commission’s Updated Health Breach Notification Rule Is Now in Effect” in Employee...more
The U.S. Securities and Exchange Commission (SEC) Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure rules officially went into effect in December 2023. Aimed at improving cybersecurity risk...more
On Oct. 22, 2024, the Securities and Exchange Commission (SEC) announced settled charges against four current and former public companies, Unisys, Avaya Holdings, Check Point Software Technologies and Mimecast, for allegedly...more
On Tuesday, the SEC announced settled charges against four companies for “making materially misleading disclosures regarding cybersecurity risks and intrusions. The charges against the companies, Unisys Corp., Avaya Holdings...more
One of our recent posts discussed the uptick in AI risks reported in SEC filings, as analyzed by Arize AI. There, we highlighted the importance of strong governance for mitigating some of these risks, but we didn’t address...more
SEC Loses in ALJ Case, DOL’s Latest Fiduciary Rule Put on Hold, and SEC Reconsiders AI and Custody Rule Proposals - Welcome to our July Regulatory Roundup, where we provide a quick look at the latest regulatory developments....more
“Net zero” is a topic as hot as the climate these days. With so much regulatory attention being placed on it, companies that do not communicate their net zero efforts appropriately or, worse, intentionally make false and...more
On March 6, 2024, the U.S. Securities and Exchange Commission (the “SEC”) adopted new final rules requiring issuers to include extensive disclosure in registration statements and periodic reports regarding material...more
Managing these risks at a single company should be straightforward. Executives and CISOs may be personally held accountable for cyber failings, negligence, breaches, and inadequate disclosure around cyber vulnerabilities and...more
The US Government Is Using AI To Detect Potential Wrongdoing, and Companies Should Too With agencies such as the SEC and DOJ using AI and other data analytics tools extensively to detect wrongdoing, companies need to adopt...more
Following a year of new DOJ policies and guidance designed to incentivize companies to self-report misconduct and to cooperate with government investigations, the DOJ has added a new pilot whistleblower rewards program. In...more
On March 6, 2024, the SEC announced its long-awaited adoption of final rules regarding climate-related disclosures by public companies and in public offerings (the “Climate Rules”). The SEC dialed back the more prescriptive...more
On March 6, 2024, two years after the issuance of a proposing release and following more than 24,000 comment letters and 4,500 unique letters submitted in response, by a vote of 3-2, the U.S. Securities and Exchange...more
Our Securities and Environmental, Social & Governance (ESG) teams examine the Securities and Exchange Commission’s final rules on what kinds of climate-related risks companies need to disclose to investors....more
The National Institute of Science and Technology (NIST) has released NIST Cybersecurity Framework (2.0) (Framework 2.0). NIST released two earlier versions of the Framework for Improving Critical Infrastructure Cybersecurity...more
Cybersecurity compliance, governance, and disclosure practices have evolved significantly over the past decade. As we have noted in prior blog posts, the U.S. Securities and Exchange Commission is requiring cybersecurity...more
At this point, it is self-evident that companies are grappling with an ever-evolving (think: tougher) cyber risk terrain. However, two recent cases against companies and their Chief Information Security Officers (CISOs),...more
Threat actors are evolving. Our Privacy, Cyber & Data Strategy Team explains how ransomware gangs have changed their tactics and how companies can respond to the threat while navigating new scrutiny from investors and...more