Paul Otto

Paul Otto

Hogan Lovells

Contact
View Bio
RSS

Latest Posts › Cyber Attacks

Share:

TSA revises rail cybersecurity directives for passenger and freight railroads

In October 2023, the Transportation Security Administration (TSA) updated three of its cybersecurity directives regulating passenger and freight railroad carriers. The following security directives have been renewed for one...more

12/1/2023  /  Cyber Attacks , Cybersecurity , Federal Railroad Administration , Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) , Infrastructure , Railroads , Transportation Security Administration

Securing Cyberspace: White House releases National Cybersecurity Strategy

The Biden Administration released its National Cybersecurity Strategy (Strategy) in an effort to reshape U.S. policy and priorities around cybersecurity for the public and private sectors, marking a significant shift in tone...more

3/8/2023  /  Biden Administration , Critical Infrastructure Sectors , Cyber Attacks , Cyber Threats , Cybersecurity , Data Protection , Telecommunications

Aerospace and Defense Insights I Critical input needed: U.S. critical infrastructure asked to engage on proposed cyber reporting...

Through Aerospace & Defense Insights, we share with you the top legal and political issues affecting the aerospace and defense (A&D) industry. Our A&D industry team monitors the latest developments to help our clients stay in...more

10/27/2022  /  Critical Infrastructure Sectors , Cyber Attacks , Cybersecurity , Data Protection , Data Security , Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) , National Security

Critical input needed: US critical infrastructure asked to engage on proposed cyber reporting rules

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a Request for Information (RFI) and announced “public listening sessions” soliciting input in advance of formal rulemaking under the Cyber Incident...more

9/13/2022  /  Critical Infrastructure Sectors , Cyber Attacks , Cyber Incident Reporting , Cyber Threats , Cybersecurity , Data Breach , Data Privacy , Data Protection , Data Security , Ransomware , Rulemaking Process

Staying Ahead of the Hack: New Cybersecurity Requirements on the Horizon for Trains and Planes

Imagine a country paralyzed by the inability — even for just one day — to move people or goods by rail or by plane. This is not science fiction. This is the reality of the potential cybersecurity threats that could impact the...more

11/10/2021  /  Aviation Industry , Critical Infrastructure Sectors , Cyber Attacks , Cybersecurity , Data Privacy , Data Protection , Data Security , Department of Homeland Security (DHS) , Railways , Ransomware , Transportation Industry , TSA

CISA issues autonomous ground vehicle cybersecurity guide

The Cybersecurity and Infrastructure Security Agency (CISA), an agency within the Department of Homeland Security, recently issued an Autonomous Ground Vehicle Security Guide (Guide). Because autonomous-vehicle (AV) pilot...more

11/3/2021  /  Automation Systems , Cyber Attacks , Cybersecurity , Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) , Internet of Things , Pilot Programs , Popular , Risk Mitigation , Supply Chain

NYDFS recommends critical new practices to reduce supply chain risk in wake of SolarWinds attack

On April 27, 2021, the New York State Department of Financial Services (“DFS” or the “Department”) released a report regarding its investigation into the response by DFS covered entities to the SolarWinds supply chain attack....more

5/5/2021  /  Cyber Attacks , Cyber Crimes , Cybersecurity , Data Breach , Hackers , Incident Response Plans , Information Technology , NYDFS , Russia , Software , SolarWinds , Supply Chain , Third-Party Service Provider

To pay or not to pay: Another regulator weighs in on the decision to pay a ransom

Ransomware victims face a nearly impossible decision: pay criminals holding their business hostage or refuse and face possible crippling consequences. This decision requires careful analysis of a number of considerations, and...more

2/25/2021  /  Cyber Attacks , Cyber Crimes , Cybersecurity , Data Breach , Hackers , Incident Response Plans , Information Technology , New Guidance , NYDFS , Personally Identifiable Information , Popular , Ransomware

New York regulator issues cyber insurance risk framework with implications for insurers and insureds

On February 4, the New York Department of Financial Services (NYDFS) released Insurance Circular Letter No. 2 (2021), a Cyber Insurance Risk Framework (Framework) for insurers that write cyber insurance....more

2/17/2021  /  Consumer Insurance Products , Cyber Attacks , Cyber Crimes , Cyber Insurance , Cybersecurity , Cybersecurity Framework , Data Breach , Data Protection , Insurance Regulations , NYDFS , Popular , Risk Management , State and Local Government

Fifth Circuit Vacates $4.3M Penalty Against MD Anderson Related to Data Losses

There has been a significant development in the ongoing debate regarding the scope of the authority of the Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) to issue penalties under the Health...more

2/3/2021  /  Civil Monetary Penalty , Cyber Attacks , Cybersecurity , Data Breach , Data Protection , HIPAA Privacy Rule , OCR

Cyber Investigations and Privilege: Court Finds Forensic Report not Covered by Work Product Doctrine

Last week, the U.S. District Court for the Eastern District of Virginia ordered Capital One to produce a forensic investigation report in multidistrict litigation arising out of the cyber incident Capital One announced in...more

6/5/2020  /  Capital One , Class Action , Cyber Attacks , Data Breach , Financial Services Industry , Forensic Examination , Popular

Cyber investigations and privilege: Court finds forensic report not protected

Last week, the U.S. District Court for the Eastern District of Virginia ordered Capital One to produce a forensic investigation report in multidistrict litigation arising out of the cyber incident Capital One announced in...more

6/3/2020  /  Capital One , Cyber Attacks , Data Breach , Financial Services Industry , Forensic Examination

OCR Provides Insight into Enforcement Priorities and Breach Trends

Regulators, industry experts, and researchers provided insight into health privacy and security enforcement trends, emerging threats, and new tools at a recent conference focused on the Health Insurance Portability and...more

10/22/2019  /  Cyber Attacks , Cybersecurity , Cybersecurity Framework , Data Breach , Department of Health and Human Services (HHS) , Electronic Medical Records , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Breach , Information Technology , NIST , OCR , Personally Identifiable Information , PHI , Right of Access , Risk Assessment

California Passes First-Of-Its-Kind Law Focused on Internet of Things Cybersecurity

Late last month, California Governor Jerry Brown signed the first US Internet of Things (IoT) cybersecurity legislation: Senate Bill 327 and Assembly Bill 1906. ...more

10/18/2018  /  Connected Items , Cyber Attacks , Cybersecurity , Data Protection , Hackers , Information Technology , Internet of Things , Mobile Devices , New Legislation , Popular , Risk Management , Security Standards , State and Local Government

Best practices for managing cybersecurity risks related to IoT-connected medical devices

Connected medical devices deliver numerous benefits not available before, including improved monitoring of patient welfare and a wealth of vital data. But for all the advantages available through these devices, their...more

3/12/2018  /  Best Practices , Connected Items , Cyber Attacks , Cybersecurity , Data Security , Federal Trade Commission (FTC) , Food and Drug Administration (FDA) , General Data Protection Regulation (GDPR) , Hackers , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , Internet of Things , Life Sciences , Medical Devices , Patient Safety , Personal Data , Pharmaceutical Industry , Popular , Regulatory Oversight , Risk Management , Security Risk Assessments , Training

Changing Cybersecurity Threats in the Context of the Internet of Things: Don’t Blink or You’ll Miss It

In this hoganlovells.com interview, Washington, D.C.-based Hogan Lovells senior associate Paul Otto talks about security issues created by the exponential growth of the Internet of Things (IoT). ...more

7/10/2017  /  Connected Items , Cyber Attacks , Cyber Threats , Cybersecurity , Data Protection , Hackers , Internet of Things , Popular

NIST Updates Cybersecurity Framework Guidance

In the past month, the National Institute of Standards and Technology (NIST) has issued a draft update to its flagship cybersecurity framework as well as new standalone guidance on how organizations can plan to recover from...more

1/26/2017  /  Comment Period , Critical Infrastructure Sectors , Cyber Attacks , Cybersecurity , Cybersecurity Framework , Data Breach , Data Protection , NIST , Ransomware , Risk Management , Supply Chain
17 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide