News & Analysis as of

Cybersecurity Disclosure Requirements

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Fenwick & West LLP

SEC News Roundup - June 2025

Fenwick & West LLP on

Petition for Rulemaking with Respect to Cybersecurity Incident Disclosure - A group of financial services industry trade associations submitted a joint petition for rulemaking requesting that the SEC amend the...more

Paul Hastings LLP

SEC Withdraws 14 Pending Rule Proposals

Paul Hastings LLP on

On June 12, the Securities and Exchange Commission (SEC) formally withdrew 14 proposed rules for investment advisers, broker-dealers and public companies, many of which had been pending for several years. Should the SEC...more

McCarter & English, LLP

Don’t Get Caught in Scattered Spider’s Web

McCarter & English, LLP on

The cybercrime group known as Scattered Spider is at it again, according to Google’s Threat Intelligence Group. This criminal group is known to focus its cyber attacks on one sector at a time. Last spring, it was the retail...more

Ropes & Gray LLP

SEC Clears Unfinished Rulemakings from Regulatory Agenda

Ropes & Gray LLP on

On June 12, 2025, the SEC issued a notice (the “Notice”) formally withdrawing certain proposed rulemakings issued in 2022 and 2023. Of particular interest to the investment management industry, the Notice withdraws the...more

DLA Piper

The Future of the SEC’s Cybersecurity Disclosure Rules

DLA Piper on

Adopted in July 2023, the US Securities and Exchange Commission (SEC)’s cybersecurity disclosure rules require public companies to report material cybersecurity incidents on Form 8-K and to annually report on their...more

K&L Gates LLP

Pay the Price, Now ‘Fess Up’: Reporting Obligations for Ransomware Payments Are Live

K&L Gates LLP on

As of 29 May 2025, the requirement on businesses to report ransomware payments they make has come into effect. What is the Requirement? If a reporting business entity becomes impacted by a cyber security incident and ends up...more

Hogan Lovells

Australia mandates first-of-its-kind reporting of ransomware payments

Hogan Lovells on

Australia has implemented a first-of-its kind requirement for eligible businesses to report ransomware payments. From 30 May 2025, eligible businesses that make a payment in response to a cyber security incident, or become...more

BakerHostetler

Australia’s New Ransomware Payment Reporting Law Takes Effect, Covering Both Critical Infrastructure and Other Entities

BakerHostetler on

On May 30, the ransomware payment reporting requirements of Australia’s Cyber Security Act 2024 (CSA) took effect. The new requirement applies to a broad range of entities and cyber security incidents, requiring reporting...more

Mayer Brown Free Writings + Perspectives

SIFMA and Other Industry Groups Petition SEC for Recission of Cybersecurity Disclosure Requirement

Mayer Brown Free Writings + Perspectives on

In late May 2025, the Securities Industry and Financial Markets Association (SIFMA), together with the American Bankers Association, Bank Policy Institute, Independent Community Bankers of America, and Institute of...more

Morgan Lewis

SEC Focus on the Life Sciences Industry: What to Expect and How to Prepare

Morgan Lewis on

The life sciences sector remains a critical area of focus for the US Securities and Exchange Commission (SEC) under the current administration. Companies operating in the healthcare, pharmaceutical, biotechnology, and medical...more

Jackson Lewis P.C.

Oklahoma Expands its Security Breach Notification Law

Jackson Lewis P.C. on

The Oklahoma State Legislature recently enacted Senate Bill 626, amending its Security Breach Notification Act, effective January 1, 2026, to address gaps in the state’s current cybersecurity framework (the “Amendment”). The...more

Venable LLP

A Closer Look at the Data Security Requirements in DOJ's Bulk Data Rule

Venable LLP on

As described in an earlier alert, the Department of Justice (DOJ) recently announced a 90-day pause in enforcement of the "Bulk Data Rule" for entities engaging in good faith compliance. That 90-day grace period ends on July...more

Wiley Rein LLP

Targeting “Foreign Adversary” Interests, FCC Proposes Broadly Applicable Ownership Reporting Regime

Wiley Rein LLP on

On May 27, 2025, the Federal Communications Commission (FCC or Commission) released a Notice of Proposed Rulemaking (Foreign Adversary NPRM or NPRM) that seeks to promote U.S. national security by providing “a new and...more

Awatif Mohammad Shoqi Advocates & Legal...

Learn more about privacy violations and secret disclosure under the UAE.

Awatif Mohammad Shoqi Advocates & Legal... on

In today's world, violations of individual privacy and secret disclosure are a serious problem. It may be eavesdropping, interception, recording, and the spreading of personal information without the consent of the other...more

Bradley Arant Boult Cummings LLP

Colorado’s Artificial Intelligence Act (CAIA) Updates: A Summary of CAIA’s Consumer Protections When Interacting with Artificial...

Bradley Arant Boult Cummings LLP on

During the 2024 legislative session, the Colorado General Assembly passed Senate Bill 24-205, which is known as the Colorado Artificial Intelligence Act (CAIA). This law will take effect on February 1, 2026, and requires...more

Katten Muchin Rosenman LLP

Privacy, Data and Cybersecurity Quick Clicks | Issue 28

Katten Muchin Rosenman LLP on

Katten's Privacy, Data and Cybersecurity Quick Clicks is a monthly newsletter highlighting the latest news and legal developments involving privacy, data and cybersecurity issues across the globe....more

Woods Rogers

Heightened U.S. Border Scrutiny Poses Increased Digital Privacy Risk for Entrants to U.S.

Woods Rogers on

Foreign nationals visiting the United States, and even returning U.S. citizens and other legal residents (with valid visas), face increasing digital privacy risks and potential entry challenges when arriving at U.S. ports of...more

Woodruff Sawyer

Whiplash: The (Brief and Tragic?) Life of the SEC’s Cyber Disclosure Rules

Woodruff Sawyer on

In 2023 and 2024, our public company clients were focused on complying with the SEC’s cyber disclosure rules—and on the risk from big, high-profile government enforcement actions like the SolarWinds case. But with a new SEC...more

Bass, Berry & Sims PLC

Key Takeaways from DOJ’s Continued Cybersecurity Enforcement

Bass, Berry & Sims PLC on

On March 25, the U.S. Department of Justice (DOJ) announced a $4.6 million settlement with MORSECORP, Inc. (MORSE) over its alleged failures to satisfy cybersecurity requirements for federal defense contractors....more

Baker Botts L.L.P.

SEC Commissioner Hester Peirce Raises Concerns Over Cyber Disclosure Rules

Baker Botts L.L.P. on

As public companies work to align with the SEC’s new cybersecurity disclosure requirements, Commissioner Hester Peirce is urging a reassessment of how these rules are applied—particularly during active cyber incidents. In a...more

Keating Muething & Klekamp PLL

Pay vs. Performance and Cybersecurity Disclosure Rules: Will the SEC Retract Rulemaking?

Keating Muething & Klekamp PLL on

On March 31, 2025, members of the U.S. House of Representatives Committee on Financial Services sent a letter to Mark Uyeda, Acting Chairman of the U.S. Securities and Exchange Commission. Seeking to “undo the damage from...more

Cooley LLP

Will the SEC Retract Its Cybersecurity Disclosure and Pay vs. Performance Rules?

Cooley LLP on

Earlier this week, Republican members of the House Committee on Financial Services sent this letter to the SEC asking that it retract a total of 14 adopted – and proposed – rules. Among this list are two that Corp Fin ushered...more

Wiley Rein LLP

Update: DOJ and CISA Issue New National Security Program to Regulate Foreign Access to Sensitive Data

Wiley Rein LLP on

On January 8, 2025, the U.S. Department of Justice (Department or DOJ) issued new rules required by then-President Biden’s February 2024 Executive Order (EO) 14117 to establish a new regulatory framework aimed at “Preventing...more

King & Spalding

Rebranding of SEC Cyber Unit Reflects Shift in Enforcement Priorities

King & Spalding on

On Thursday, February 20, the U.S. Securities and Exchange Commission (“SEC”) announced that it created a Cyber and Emerging Technologies Unit (“CETU”) to combat cyber-focused financial misconduct. The announcement reflects a...more

WilmerHale

Preparing for Cybersecurity Disclosure as a Public Company

WilmerHale on

The SEC, investment banks and other stakeholders are increasingly focused on cybersecurity in IPO companies given the potential financial, legal and reputational risks....more

939 Results
 / 
View per page
Page: of 38
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide