Topics In This Issue:

• Federal Issues

• Courts

• Firm News

• Firm Publications

• Banking

• Consumer Finance

• Litigation

• Privacy/Data Security

Excerpt from Privacy/Data Security

SEC Issues Guidance on Disclosure of Cybersecurity Risks. On October 13, the Securities and Exchange Commission's Division of Corporate Finance (Division) released CF Disclosure Guidance: Topic No. 2 - Cybersecurity, which outlines the Division's views regarding the criteria that publicly held companies should consider in determining what disclosures of cybersecurity risks should be made. The Guidance indicates that companies should weigh several risk factors including the history, probability and severity of incidents and the adequacy of measures taken to mitigate risks for actual or threatened attacks to determine the materiality of the risk and the resulting need to disclose. The Guidance further addresses the specific locations in annual reports and financial statements that certain cyber risk issues should be disclosed. While the Division notes that some incidents may call for greater factual disclosures, there is no requirement that a company provide a "roadmap" to those who may attempt to infiltrate its computer systems...

Please see full newsletter below for more information.