Latest Posts › Data Protection

Share:

Location Data Practices Targeted by California Lawmakers and Regulators

In late February, California lawmakers introduced new legislation that would impose sweeping restrictions on the use of location and tracking data. Known as the California Location Data Act (CLDA), this legislation goes a...more

How Remote Hiring Practices Could Lead to Infiltration of Your Organization: North Korea Operatives are Exploiting Remote Hiring...

In today's fast-paced digital world, businesses often seek to access a global pool of skilled professionals by turning to remote talent to fill gaps in their IT needs. Although this practice has many advantages, it also...more

CFPB Proposes Rule to Regulate Data Brokers Selling Sensitive Information

In today's digital landscape, data brokers are like modern-day gold miners, sifting through the intimate details of our lives – our addresses, financial records, Social Security numbers – and quietly turning that information...more

Ten Best Practices to Protect Your Organization Against Cyber Threats

The conclusion of Cybersecurity Awareness Month is a reminder of the importance for organizations to implement robust security measures and promote good cyber hygiene. As we noted in our State of the Cyber Landscape webinar,...more

Data Breaches: The Not-So-Hidden Cost of Doing Business

In this era of big data, smart devices, and constant connectivity, the clock's already ticking on your next data breach – it's just a matter of time. For companies of all sizes and across every industry, the stakes have never...more

Happy Hack-tober! Don't be Scared: How to Protect Your Business from RaaS Threats

October is here, and as we prepare for pumpkin spice lattes, fall sweaters, and scary decorations, there's one thing your business can't afford to ignore this month: cybersecurity. Welcome to Hack-tober, or as it's officially...more

Top Privacy and Cybersecurity Issues to Track In 2024

In recognition of International Privacy Day on January 28, we wanted to share some insights on the top privacy and cybersecurity issues for the new year. Data privacy and cybersecurity will continue to be one of the most...more

MOVEit Transfer Zero-Day Vulnerability: What Companies Need to Know

On May 31, 2023, renowned managed file transfer solution provider Ipswitch, Inc. revealed a zero-day vulnerability in its flagship solution, MOVEit Transfer, that can enable mass data theft from thousands of organizations....more

SEC Issues Multiple Cybersecurity Rule Proposals

The Securities and Exchange Commission (SEC) continued its focus on cybersecurity regulations this month by announcing three new proposed rules and re-opening the comment period on an additional proposed rule from last year....more

Banking in the Cloud: How Financial Institutions Can Mitigate the Regulatory and Security Risks

As organizations in the financial sector continue to migrate IT and business services to the cloud and adopt other cloud offerings, it is important that financial institutions understand the risks associated with each. A U.S....more

NCUA Approves New Cyber Incident Reporting Requirements: What Credit Unions Need to Know

The National Credit Union Administration (NCUA) has approved new cyber incident reporting requirements for credit unions. Under the final rule, federally insured credit unions will be required to notify the NCUA of a...more

Financial Industry Regulators Continue Crackdown on Cybersecurity

On multiple fronts, the U.S. Securities and Exchange Commission (SEC) and the Financial Industry Regulatory Authority (FINRA) continue to increase their focus on cybersecurity. This is understandable as headlines of recent...more

FFIEC Updates Its Guidance on Authentication and Access Controls: Key Takeaways Financial Institutions Should Implement Now

On August 11, 2021, the Federal Financial Institutions Examination Council (FFIEC), the multi-agency authority responsible for issuing uniform principles and standards for supervision of financial institutions, published new...more

Another State Privacy Law Hits the Books: What You Need to Know About the Colorado Privacy Act

Earlier this month, Colorado became the third state to pass comprehensive data privacy legislation. As we have previously analyzed, California originally passed the CCPA and the CPRA, then Virginia passed the VCDPA, and now...more

California Privacy Law Update: CCPA Amendments Announced and CPPA Board Members Appointed

California is continuing to make news with respect to its privacy laws. California's Attorney General recently announced the approval of new amendments to regulations of the California Consumer Privacy Act (CCPA). The new...more

NYDFS Surges Ahead with Cybersecurity Enforcement: Recent Fine Highlights Need for Financial Institutions to Focus on Incident...

The New York Department of Financial Services (NYDFS) has become a frequent topic of these alerts. In recent weeks we have covered multiple actions from the regulator, including its first enforcement action, its SolarWinds...more

Key Takeaways from Recent Cyberattack Resulting in Demise of Hedge Fund

We've all heard a lot about cybersecurity risks and how cyberattacks have dramatically increased since COVID-19 changed our daily work environments. A recent attack has resulted in the demise of a hedge fund and illustrates...more

Privacy Legislation Floodgates Have Opened: Virginia Passes the Consumer Data Protection Act

Virginia has become the latest state to pass comprehensive privacy legislation as its legislature voted to enact SB 1392, known as the Consumer Data Protection Act (the "Act"). Although many other states have proposed privacy...more

U.S.'s First Cyber Insurance Risk Framework Issued by New York Department of Financial Services

New York remains extremely active in the cybersecurity and data protection arena. As we have recently discussed, New York is considering a proposed privacy bill that would greatly enhance consumer privacy rights, increase...more

Faster and More Comprehensive Breach Notification Requirements Proposed for Banks

The Office of the Comptroller of the Currency (OCC), the Federal Reserve Board (FRB), and the Federal Deposit Insurance Company (FDIC), have issued a notice of proposed rulemaking (Proposed Rule) that would require a banking...more

The Year Ahead: Privacy and Cybersecurity Issues Facing Financial Institutions in 2021

The financial services industry faced unprecedented cybersecurity and privacy challenges in 2020. From learning how to operate with a remote workforce, dealing with a complex and evolving regulatory environment, facing an...more

Lessons Learned from the NYDFS First Cybersecurity Regulation Enforcement Action

Last week, the New York Department of Financial Services (NYDFS) filed its first enforcement action against a title insurance company (the company) alleging multiple violations of its Cybersecurity Regulation. New York's...more

Critical Guidance for Financial Institutions on Security Considerations for Cloud Computing Environments

On April 30, 2010, the Federal Financial Institutions Council (FFIEC) issued Guidance on the use of cloud computing services and security risk management principles in the financial services sector. The Guidance reminds...more

SEC Issues Risk Alert on Regulation S-P

It should not be surprising to anyone that cybersecurity and data protection remain top priorities for regulators of the financial services industry. Indeed, cybersecurity has been regularly identified as a key priority by...more

Public Company Cybersecurity Disclosures: The SEC Means What It Says

On April 24, 2018, the U.S. Securities and Exchange Commission (SEC) fined Altaba Inc. – formerly known as Yahoo – $35 million for failing to disclose a substantial data breach and cyberattack that occurred in December 2014....more

26 Results
 / 
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide