News & Analysis as of

Securities Privacy

Read need-to-know updates, commentary, and analysis on Securities issues written by leading professionals.

Equifax Data Breach Highlights SEC Disclosure Obligations for Public Companies in the Wake of Cybersecurity Attacks

On September 7, 2017, Equifax, one of the country’s three primary credit reporting bureaus, announced it had suffered a major cybersecurity breach that could potentially affect half of the U.S. population. According to the...more

Cyberattacks Are the New Norm - How to respond and get insurance recovery for government investigations.

Takeaways - Companies that suffer cyberattacks can expect not sympathy but scrutiny from legal authorities. - D&O insurance can cover not only litigation but also investigation costs. - Strategic negotiation of...more

Blog: SEC Hack Provides Occasion For Chair Clayton To Revitalize 2011 Corp Fin Disclosure Guidance On Cybersecurity Risks And...

by Cooley LLP on

As you probably read in the papers, SEC Chair Jay Clayton announced yesterday that, in 2016, the SEC’s EDGAR system was hacked and, in August 2017, the staff determined that the hack may have led to insider trading. The...more

SEC Chair Clayton’s Statement on Cybersecurity: EDGAR was Hacked

SEC Chairman Jay Clayton today issued an unusual statement highlighting the importance of cybersecurity to the agency and market participants, and detailing the agency’s approach to cybersecurity as an organization and as a...more

Your Daily Dose of Financial News

by Robins Kaplan LLP on

As expected, the Fed left interest rates at current levels yesterday, though it hinted at another December rate hike and officially unveiled the start of its bond wind-down next month....more

Your Daily Dose of Financial News

by Robins Kaplan LLP on

The Systemic Risk Council—a heady group of “former top financial regulators, regulators, policymakers and academics”—is warning that the rollback of Dodd-Frank and other financial regulators could lead to bank failures and...more

Global Privacy & Cybersecurity Update Vol. 15

by Jones Day on

UNITED STATES - Regulatory—Policy, Best Practices, and Standards - FTC Comments on Improvements to IoT Device Security - On June 19, the Federal Trade Commission ("FTC") submitted comments to a working group organized by the...more

OCIE Releases Cybersecurity Risk Alert

by Bracewell LLP on

On August 7, 2017, the Securities and Exchange Commission’s Office of Compliance Inspections and Examinations (OCIE) released a Risk Alert summarizing its most recent cybersecurity examination findings. As a part of its Phase...more

Your Daily Dose of Financial News

by Robins Kaplan LLP on

Equifax is not exactly ending the week on a high note. The credit reporting agency revealed yesterday that a cyberattack [uncovered nearly 2 months ago] rendered potentially vulnerable the information of 143 million people....more

OCIE Releases Results of Cybersecurity Examination Initiative

On August 7, 2017, the Office of Compliance Inspections and Examinations (OCIE) of the U.S. Securities and Exchange Commission (SEC) released a summary of its observations (the report) from cybersecurity examinations of 75...more

ICO Confirms That Consent is Not the ‘Silver Bullet’ for GDPR Compliance

by Reed Smith on

In her blog last week, the UK Information Commissioner, Elizabeth Denham, tackled the issue of consent under the GDPR. This blog, the second in a series to be published by the ICO, is intended to address some of the myths...more

8th Circuit Finds Standing in Data Breach Case but Dismisses on Pleading Deficiencies

In one of the first federal appellate court rulings following the Ninth Circuit’s decision in Robins v. Spokeo, the Eighth Circuit delivered a pyrrhic victory for customers victimized by a data breach....more

Eighth Circuit Finds Standing in Data Breach Case for Privacy Policy Violation, Dismisses for Lack of Specificity

by Fenwick & West LLP on

The U.S. Court of Appeals for the Eighth Circuit has held that allegations that the security provisions of a privacy policy were violated are sufficient for standing in a data breach case, but that plaintiffs’ contractual...more

SEC’s Cybersecurity Risk Alert Reflects Advisory Firms are Gambling with Your Data

by Burr & Forman on

In August 2017, the SEC’s Office of Compliance Inspections and Examinations issued a Cybersecurity risk alert directed at financial advisory firms. As part of the SEC’s 2014 Cybersecurity Initiative, seventy-five firms,...more

SEC Publishes Cybersecurity Risk Alert

by Balch & Bingham LLP on

On August 7 2017, the U.S. Securities and Exchange Commission (SEC), through its Office of Compliance Inspections and Examinations (OCIE), published a Risk Alert summarizing observations on how broker dealers, investment...more

The Good and the Bad from OCIE’s Cyber Examinations and What Firms Should Do Next

by Dechert LLP on

The Office of Compliance Inspections and Examinations (OCIE) of the U.S. Securities and Exchange Commission (SEC) released a National Examination Program Risk Alert (Risk Alert) on August 7, 2017 regarding observations from...more

Developments in New York and Colorado Cybersecurity Regulations

by Wilson Elser on

New York - For the first time since New York’s Cybersecurity Regulation (23 NYCRR Part 500) became effective on March 1, 2017, the Department of Financial Services (DFS) has issued Frequently Asked Questions to assist...more

SEC Issues Risk Alert To Improve Cybersecurity Readiness

by King & Spalding on

On August 7, 2017, the U.S. Securities and Exchange Commission (“SEC”) published a risk alert directed to the financial advisory industry, identifying cybersecurity vulnerabilities that could make the industry’s networks...more

Part Two: Abandoned Mines and Data Retention Policies

by McGuireWoods LLP on

As discussed in Tuesday’s post, in addition to taking reasonable precautions to secure data, companies should consider whether they have an affirmative duty to destroy data in the United States – to clear the explosives out...more

OCIE Observations from the Second Round of Cybersecurity Examinations

by K&L Gates LLP on

On August 7, 2017, the Securities and Exchange Commission’s (“SEC”) Office of Compliance Inspections and Examinations (“OCIE”) released a risk alert (the “Risk Alert”) summarizing observations from the second round of...more

SEC Cybersecurity Risk Alert Emphasizes Proactive Compliance and Ongoing Vigilance

by BakerHostetler on

On August 7, 2017, the Securities and Exchange Commission (SEC) released its latest cybersecurity risk alert, detailing findings from the examination of 75 broker-dealers, investment advisers and investment companies carried...more

SEC Watch: “Observations” from SEC’s Cybersecurity 2 Initiative

Last week, the U.S. Securities and Exchange Commission’s (“SEC”) Office of Compliance Inspections and Examinations (“OCIE”) released its “Observations from Cybersecurity Examinations” conducted pursuant to OCIE’s...more

OCIE Provides Insight into Issues Identified in Recent Cybersecurity Sweep

by Morrison & Foerster LLP on

The National Exam Program of the SEC’s Office of Compliance Inspections and Examinations (OCIE) recently published its observations from the second generation of its Cybersecurity Initiative. It reported overall improvement...more

SEC Observations from Recent Cybersecurity Examinations Identify Best Practices

by Morgan Lewis on

The SEC continues to focus on cybersecurity as an area of concern within the investment management industry....more

SEC Report Highlights Financial Firms’ Cybersecurity Improvements and Shortcomings

On August 7, the Securities and Exchange Commission’s Office of Compliance Inspections and Examinations (OCIE) released a Risk Alert summarizing the results of its second cybersecurity preparedness examination. The...more

639 Results
|
View per page
Page: of 26
Cybersecurity

Follow Securities Updates on:

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.