Follow

Data Security Law Blog Blog

Articles: 1-10 of 316

Wegmans, New York Attorney General Enter Settlement to Resolve Data Security Investigation

USA - July 13 2022 In a sign that it may be stepping up enforcement of New York’s Stop Hacks and Improve Electronic Data Security Act (“SHIELD Act”), the New York…

DOJ Issues New Guidance for Charging CFAA Cases

USA - May 23 2022 In a significant development in anti-hacking criminal enforcement, the Department of Justice last week released new guidance for charging violations…

Ransomware Attacks Case Studies Provide Rare Learning Opportunities

USA - April 4 2022 Ransomware attacks have become headline news in the mainstream media, and a hot topic not only on this blog but in government circles. And with good…

Fourth Time’s the Charm—Utah Will Become Latest State to Enact Privacy Legislation

USA - March 16 2022 Utah is poised to become the latest state to jump on the privacy bandwagon. Last week, the Utah Consumer Privacy Act (“UCPA”) passed both houses of…

White House Issues Further Guidance for Federal Agencies on Cybersecurity Priorities

USA - February 3 2022 The White House recently issued a Memorandum designed to strengthen the cyber defenses of “National Security Systems” - information systems operated…

Ransomware’s Exponential Growth Echoes the History of Hijackings

USA - November 10 2021 Throughout the COVID-19 crisis, we have focused on the significant uptick in ransomware attacks. Government agencies such as OFAC, CISA, and New…

DFS Issues New Guidance Regarding Cybersecurity Regulation and the Adoption of an Affiliate’s Cybersecurity Program

USA - November 9 2021 On October 22, 2021, the New York State Department of Financial Services (“DFS”) issued new Guidance regarding a Covered Entity’s compliance with New…

OFAC Ransomware Guidance: Prepare, Report, and (Preferably) Don’t Pay the Ransom!

USA - September 30 2021 As we have previously reported, there has been a major uptick over the past few years—and particularly during the COVID-19 pandemic—in ransomware…

SEC Continues Pursuit of Cybersecurity Enforcement

USA - September 9 2021 Last month, we wrote about three actions taken by the SEC signaling a renewed interest in cybersecurity disclosure enforcement. In keeping with this…

Massive T-Mobile Data Breach Reignites Calls for National Privacy and Data Security Law

USA - September 2 2021 A little over two weeks ago, T-Mobile became the latest victim of a cyberattack when more than 50 million of their customers’ data was stolen. In the…