Michael Egan

Michael Egan

Cooley LLP

Contact
View Bio
RSS

Latest Posts › Cybersecurity

Share:

Federal Housing Administration Publishes Draft Updates to Its Cyber Reporting Requirements

On September 30, 2024, the Federal Housing Administration (FHA) published a draft Mortgagee Letter (ML) with updated cyber incident reporting requirements and a call for interested stakeholders to provide feedback to the...more

10/4/2024  /  Cybersecurity , Federal Housing Administration (FHA) , HUD , Mortgages , Reporting Requirements

Federal Court Dismisses Bulk of SEC’s Complaint Against SolarWinds in Cyberattack Case

On July 18, 2024, US District Judge Paul Engelmayer of the Southern District of New York issued a detailed 107-page opinion and order dismissing most of the US Securities and Exchange Commission (SEC) case against SolarWinds...more

7/24/2024  /  Chief Information Security Officer (CISO) , Cyber Attacks , Cybersecurity , Popular , Securities and Exchange Commission (SEC) , SolarWinds

CISA Opens Notice and Comment Process on CIRCIA Draft Regulations

On March 27, 2024, the Cybersecurity and Infrastructure Security Agency (CISA) within the Department of Homeland Security published a long-awaited notice of proposed rulemaking (NPRM) pursuant to the Cyber Incident Reporting...more

4/12/2024  /  Critical Infrastructure Sectors , Cyber Incident Reporting , Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) , Cybersecurity , Cybersecurity Information Sharing Act (CISA)

FTC Adds New Data Breach Reporting Obligations Under Safeguards Rule

On October 27, 2023, the Federal Trade Commission (FTC) unanimously approved an amendment to the Gramm-Leach-Bliley Act (GLBA) Safeguards Rule to require certain covered financial institutions to report a broad range of data...more

11/21/2023  /  Breach Notification Rule , Cybersecurity , Data Breach , Federal Trade Commission (FTC) , Financial Institutions , Gramm-Leach-Blilely Act , Personal Information , Popular , Reporting Requirements , Safeguards Rule

New York Department of Financial Services Amends Its Cybersecurity Regulations

On November 1, 2023, the New York Department of Financial Services (NYDFS) finalized its proposed cybersecurity rules, which build upon existing NYDFS cybersecurity requirements in the Part 500 Cybersecurity Rules....more

11/9/2023  /  Chief Information Security Officer (CISO) , Covered Entities , Cybersecurity , Financial Services Industry , NYDFS

Key Considerations for Form 8-K Cybersecurity Materiality Determinations

With 8-K reporting obligations for “material” cybersecurity incidents under the new Securities and Exchange Commission (SEC) rules becoming effective as of December 18, 2023, most companies will soon be tasked with making...more

9/27/2023  /  Cyber Incident Reporting , Cybersecurity , Disclosure Requirements , Form 8-K , Securities and Exchange Commission (SEC)

SEC Adopts Comprehensive Cybersecurity Disclosure Requirements

On July 26, 2023, the Securities and Exchange Commission (SEC) voted at an open meeting to adopt final rules to mandate standardized cybersecurity disclosures by public companies. The final rules will...more

8/3/2023  /  Cyber Incident Reporting , Cybersecurity , Disclosure Requirements , Final Rules , Form 10-K , Form 8-K , Publicly-Traded Companies , Regulation S-K , Reporting Requirements , Risk Management , Securities and Exchange Commission (SEC)

White House Releases National Cybersecurity Strategy Implementation Plan

On July 13, 2023, the White House unveiled its National Cybersecurity Strategy Implementation Plan (NCSIP or implementation plan), following the release of the National Cybersecurity Strategy....more

7/25/2023  /  Critical Infrastructure Sectors , Cyber Attacks , Cyber Threats , Cybersecurity , Data Privacy , Data Protection , Data Security , Ransomware

California Attorney General Announces $1.2 Million CCPA Settlement With Sephora Amid Ongoing Enforcement Sweep

On August 24, 2022, California Attorney General Rob Bonta announced a $1.2 million settlement with cosmetics retailer Sephora to resolve allegations that it violated the California Consumer Privacy Act (CCPA) and failed to...more

8/29/2022  /  California Consumer Privacy Act (CCPA) , Consumer Privacy Rights , Cybersecurity , Data Privacy , Data Protection , Personal Information , Sephora , Statutory Violations

FTC Proposes Change in Regulation, Enforcement of Data Collection and Security

Key Takeaways - On August 11, 2022, the Federal Trade Commission announced an advance notice of proposed rulemaking (ANPR) to initiate a process that would allow it to develop and enforce rules on what the FTC has termed...more

8/26/2022  /  Cybersecurity , Data Collection , Data Privacy , Data Protection , Data Security , Federal Trade Commission (FTC) , Personal Information

US Privacy Compliance Journey: Due Diligence and Gap Assessment

With the passage of new state privacy laws slated to take effect in 2023, organizations are increasingly focused on identifying necessary steps to comply with these new laws. One of the first key steps in the compliance...more

8/11/2022  /  Cybersecurity , Data Privacy , Data Security , Due Diligence
11 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide