United States District Court Judge Reed O’Connor of the Northern District of Texas issued a ruling on Friday, December 14, 2018, declaring the Patient Protection and Affordable Care Act (ACA) unconstitutional in its entirety....more
On December 4, 2018, the Federal Trade Commission (“FTC”) announced that it is seeking comment on whether to change the “Red Flags Rule” and the “Card Issuers Rule” (the identity theft rules codified at 16 CFR Part 681) as...more
On November 6, 2018, the U.S. Supreme Court ordered post-argument supplemental briefing in Frank v. Gaos, No. 17-961 (U.S.). The primary question on which the Court granted certiorari in Frank is whether a class action...more
In written testimony for a Senate subcommittee hearing held on August 21, 2018, Department of Justice (“DOJ”) Associate Deputy Attorney General Sujit Raman said, among other things, that reform is needed for the Computer...more
On February 12, 2018, President Trump released a budget proposal for fiscal year 2019 that includes requests for cybersecurity-related funding for the Department of Defense (“DOD”), Department of Homeland Security (“DHS”),...more
On September 28, 2017, the US Senate passed the Making Available Information Now to Strengthen Trust and Resilience and Enhance Enterprise Technology Cybersecurity Act of 2017 (the “Act”). The purpose of the Act is to require...more
On August 17, 2017, Delaware Governor John Carney signed into law an Act (“Act”) amending the Delaware Code (“Code”) as it relates to security breaches involving personal information. The Act revises the definition of what...more
On July 24, 2017, the UK Department for Digital, Culture, Media and Sport (“DCMS”) announced plans to develop a new center for cybersecurity innovation in London. The UK plans to invest up to £14.5 million in the center over...more
On June 19, 2017, the Federal Trade Commission (“FTC”) submitted public comments recommending modifications to draft guidance to improve the security of Internet of Things (IoT) devices by having IoT manufacturers better...more
On March 15, 2017, the United States announced the indictment of four defendants for their roles in the hacks of Yahoo’s network, systems, and user accounts. The indictment stems from an investigation conducted by the Federal...more
On February 1, 2017, the United States Government Accountability Office (“GAO”) published a report assessing the performance and effectiveness of the National Cybersecurity and Communications Integration Center (“NCCIC”) of...more
On January 3, 2017, the Massachusetts Office of Consumer Affairs and Business Regulation announced the online public availability of data breach notification records that it receives and maintains pursuant to the...more
On November 11, 2016, Facebook, Inc. (“Facebook”), filed an answer (“Answer”) in response to a consolidated class action complaint (“Complaint”) alleging that Facebook generates, collects, stores and uses “face geometry”...more
On October 4, 2016, the Department of Defense (“DoD”) published a final rule implementing mandatory cyber incident reporting requirements for DoD contractors and subcontractors. The rule, which is effective as of November 3,...more