The U.S. Food and Drug Administration (“FDA”) released updated draft guidelines on how medical device manufacturers should protect against data breaches and viruses prior to marketing their products. The new draft, once...more
On May 9, 2018, the House Energy and Commerce Committee approved a series of legislative measures to further secure the U.S. energy infrastructure from cyberattacks. These bipartisan bills are designed to strengthen the...more
South Dakota and Alabama recently became the forty-ninth and fiftieth states, respectively, to enact data breach notification legislation, completing the nationwide patchwork quilt of state data breach laws....more
On December 11, 2017, the House of Representatives passed the Cybersecurity and Infrastructure Security Agency Act, intended to centralize authority and responsibility for cybersecurity at the U.S. Department of Homeland...more
Members of the House of Representatives Science Committee modified a bill that would have made the National Institute of Standards and Technology (“NIST”) responsible for auditing federal agencies’ cybersecurity protections....more
The President’s National Infrastructure Advisory Council (“NIAC”) issued a draft report at the end of August assessing the U.S.’s cyber preparedness related to critical infrastructure.
...more
The U.S. Senate will soon consider legislation aimed at providing simplified resources to help small businesses protect themselves and their customers from cyber threats. The bill, entitled the MAIN STREET Cybersecurity Act...more
The Group of 7, comprised of Canada, France, Germany, Italy, Japan, the United Kingdom, and the United States, adopted a non-binding agreement aimed at strengthening the cybersecurity and resiliency of the international...more
Last week, the National Association of Secretaries of State (“NASS”) appointed four secretaries of state to the Department of Homeland Security’s (“DHS”) Election Infrastructure Cybersecurity Working Group (“Working Group”). ...more
The European Parliament gave final approval to the Network and Information Security Directive (“Directive”), the first-ever EU-wide cybersecurity standards, on July 6, 2016. The Directive seeks to improve the cybersecurity...more