David Kantrowitz

David Kantrowitz

Goodwin

Contact
View Bio
RSS

Latest Posts › Data Breach

Share:

SEC Makes Cybersecurity Top Priority; Sanctions Firms for Cybersecurity Failures

There is little doubt that the U.S. Securities and Exchange Commission is making cybersecurity a top priority. SEC Chair Gary Gensler told a Senate committee on Tuesday, September 14, 2021 that the agency is developing a...more

9/16/2021  /  Broker-Dealer , Cyber Attacks , Cyber Incident Reporting , Cyber Threats , Cybersecurity , Data Breach , Data Breach Plans , Data Protection , Data Security , Enforcement Actions , Information Security , Investment Adviser , Investment Advisers Act of 1940 , Investment Firms , Personally Identifiable Information , Phishing Scams , Policies and Procedures , Regulation S-P , Safeguards Rule , Sanctions , Securities and Exchange Commission (SEC)

NYDFS Consent Order Signals Regulator’s Growing Focus On Financial Institutions’ Incident Response And Security Practices

In early March, the New York State Department of Financial Services (“NYDFS”) announced a consent order that required Maine-based mortgage servicer Residential Mortgage Services, Inc. (“Residential”) to pay a $1.5 million...more

3/23/2021  /  Banking Sector , Business E-Mail Compromise (BEC) , Consent Order , Covered Entities , Cyber Incident Reporting , Cybersecurity , Data Breach , Data Security , Failure to Report , Financial Institutions , Financial Services Industry , Mortgage Servicers , Non-Public Information , NYDFS , Personally Identifiable Information , Sensitive Personal Information

Nowhere To Hide: Controllers have “Constructive Awareness” Of Processor Data Breaches

On December 15, 2020, Ireland’s Data Protection Commission (“DPC”) announced its decision to fine Twitter International Company (“Twitter”) €450,000 for failing to notify the DPC promptly of a data breach affecting EU...more

1/20/2021  /  Cyber Incident Reporting , Cybersecurity , Data Breach , Data Controller , Data Processors , Data Protection , Data Protection Commissioner , Data Security , EU , Failure to Notify , General Data Protection Regulation (GDPR) , Personal Data , Policies and Procedures , Twitter

2016: The Year of Cyber Insurance?

It has been said that there are two types of companies in the world – those that have been hacked, and those that do not yet know they have been hacked. While perhaps an overstatement, it seems that every day, another company...more

6/13/2016  /  Cyber Attacks , Cyber Insurance , Cyber Threats , Cybersecurity , D&O Insurance , Data Breach , Data Protection , E&O Insurance , Policy Exclusions , Popular , Risk Assessment
4 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide