News & Analysis as of

Cybersecurity Information Technology Enforcement Actions

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Dacheng

China Monthly Data Protection Update: March 2025

Dacheng on

This monthly report outlines key developments in China’s data protection sector for March. The following events merit special attention...more

Orrick, Herrington & Sutcliffe LLP

CFPB reportedly cancels $100M+ in vendor contracts, including IT and cybersecurity

Orrick, Herrington & Sutcliffe LLP on

On February 11, the CFPB reportedly canceled more than $100 million in vendor contracts as part of a cost-cutting initiative by its new leadership. The cuts include 102 contracts related to the enforcement division, 33...more

Ropes & Gray LLP

Capital Markets & Governance Insights - January 2025

Ropes & Gray LLP on

Companies should not minimize the extent of a material cybersecurity incident by omitting material facts regarding the scope and potential impact of the incident. Cybersecurity risk factor disclosures should be tailored to a...more

Health Care Compliance Association (HCCA)

With Nod to OCR, Indiana Inks $350K Deal With Dental Firm Following Hack

Health Care Compliance Association (HCCA) on

Recent federal enforcement actions have brought home the lesson that there’s really no acceptable reason for denying a patient timely access to medical records. Last year, for example, the HHS Office for Civil Rights (OCR)...more

Robinson+Cole Data Privacy + Security Insider

Intercontinental Exchange Settles with SEC Over Alleged Delay in Notification of Hack

Robinson+Cole Data Privacy + Security Insider on

Intercontinental Exchange, Inc. (ICE), the owner of the New York Stock Exchange, has agreed to settle with the Securities and Exchange Commission (SEC) for $10 million over allegations that it failed to timely notify the SEC...more

ArentFox Schiff

Key Takeaways from OCR’s CY22 HIPAA Reports to Congress

ArentFox Schiff on

On February 14, the US Department of Health and Human Services (HHS) Office for Civil Rights (OCR) issued its annual reports to Congress detailing its actions to enforce the privacy, security, and breach notification...more

Wyrick Robbins Yates & Ponton LLP

Bad Medicine: 5 Lessons from the Connecticut AG’s Report on CTDPA Cure Notices

Wyrick Robbins Yates & Ponton LLP on

On February 1, 2024, the Connecticut Office of the Attorney General (“OAG”) issued a Report to the General Assembly’s General Law Committee (“Report”), summarizing the OAG’s enforcement efforts during six months since the...more

Holland & Knight LLP

Winds of Change: SEC's SolarWinds Lawsuit Signals Hotter Cybersecurity Enforcement

Holland & Knight LLP on

The SEC on Oct. 30, 2023, filed a landmark cybersecurity enforcement action against SolarWinds Corp. (SolarWinds) and the company's current Chief Information Security Officer (CISO) Timothy Brown. The SEC's complaint alleges...more

Thomas Fox - Compliance Evangelist

SEC, Solar Winds and Compliance

Thomas Fox - Compliance Evangelist on

The recent SEC lawsuit against SolarWinds Corp and its CISO, Tim Brown, following the 2020 data breach, has brought the issue of executive liability in cybersecurity disclosures to the forefront. This case sheds light on the...more

Skadden, Arps, Slate, Meagher & Flom LLP

What Does the SEC’s Complaint Against SolarWinds Mean for CISOs and Boards?

Skadden, Arps, Slate, Meagher & Flom LLP on

On October 30, 2023, the SEC filed a litigated complaint against SolarWinds, a software development company, and Timothy Brown, its chief information security officer (CISO). The SEC alleges that from October 2018, when...more

Robinson+Cole Data Privacy + Security Insider

SEC Hits SolarWinds and CISO with Investor Fraud Suit Over Cybersecurity

Robinson+Cole Data Privacy + Security Insider on

In a first, bold move by the Securities and Exchange Commission (SEC) following its new Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies, issued on July 26, 2023, this...more

The Volkov Law Group

SEC Sues SolarWinds and its CISO for Fraud Over Botched Data Breach Response, Marking New Era in Cyber Enforcement

The Volkov Law Group on

The U.S. Securities and Exchange Commission has a message for publicly-traded companies that suffer a data breach: own up. On Monday, the SEC sued Texas-based SolarWinds––and its Chief Information Security Officer...more

Faegre Drinker Biddle & Reath LLP

New York Department of Financial Services Levies $1.2 Million Fine on Cryptocurrency Platform for Violations of Cybersecurity...

Faegre Drinker Biddle & Reath LLP on

A recent consent order between the New York State Department of Financial Services (“NYDFS”) and cryptocurrency trading platform, bitFlyer USA (“bitFlyer”), shows that the NYDFS continues to utilize an aggressive enforcement...more

Burr & Forman

Hacking the Hive: How It Can Help Businesses

Burr & Forman on

Businesses can breathe a little easier now that one of the world’s top five ransomware networks, the Hive, has been infiltrated and disbanded by the FBI....more

Robinson & Cole LLP

Data Privacy + Cybersecurity Insider - February 2023

Robinson & Cole LLP on

CYBERSECURITY - World Economic Forum’s Global Cybersecurity Outlook for 2023 Is Bleak - Sorry to be the bearer of bad news but remember that I am only the messenger. According to the World Economic Forum’s Global...more

Polsinelli

Cybersecurity Awareness Means, at a Minimum, Doing the Basics (Again and Again)

Polsinelli on

On September 30, 2022, the White House kicked off Cybersecurity Awareness Month by reminding citizens of the impacts cyberattacks can have on critical infrastructure such as “electric grids and fuel pipelines … and many other...more

Society of Corporate Compliance and Ethics...

[Virtual Event] Chicago & Nashville Regional Compliance & Ethics Conference - July 15th, 8:25 am - 4:30 pm CDT

Society of Corporate Compliance and Ethics... on

General and specialty compliance training from the comfort of your home or office! SCCE’s Regional Compliance & Ethics Conferences provide practitioners with virtual compliance training that includes updates on the latest...more

Robinson & Cole LLP

Data Privacy + Cybersecurity Insider - April 2022 #2

Robinson & Cole LLP on

CYBERSECURITY - State Department Establishes Bureau of Cyberspace and Digital Policy - The Department of State’s new Bureau of Cyberspace and Digital Policy (CDP) commenced operations on April 4, 2022. According to an...more

Wiley Rein LLP

2021 FCA Recoveries Bounce Back from Decade-Low . . . Maybe

Wiley Rein LLP on

On February 1, the U.S. Department of Justice (DOJ) announced the second-largest annual total recoveries in the history of the False Claims Act (FCA)—$5.6 billion—for FY 2021 (October 2020 – September 2021)...more

Bilzin Sumberg

Recent Settlements and Penalties Show Perils of Data Breaches

Bilzin Sumberg on

Two major U.S. financial institutions, Morgan Stanley and Capital One, recently agreed to resolve separate class action lawsuits by paying, in the aggregate, hundreds of millions of dollars in compensation for massive data...more

Vinson & Elkins LLP

Lincoln’s Law in the Digital Age: DOJ to Expand Use of the False Claims Act to Enforce Cybersecurity Requirements

Vinson & Elkins LLP on

The Department of Justice (“DOJ”) recently announced a new Civil Cyber-Fraud Initiative (the “Initiative”) that will use the False Claim Act (“FCA”) to pursue contractors and grant recipients that knowingly...more

Jones Day

Jones Day Global Privacy & Cybersecurity Update | Vol. 28

Jones Day on

UNITED STATES - Regulatory—Policy, Best Practices, and Standards - President Biden Issues Cybersecurity Executive Order  - On May 12, 2021, President Biden issued an executive order that placed new standards on the...more

Polsinelli

New York Department of Financial Services Announces a $1.8 Million Settlement with Two Life Insurers for Data Breach Violations

Polsinelli on

The New York Department of Financial Services (“NYDFS”) recently announced that it has entered into a Consent Order with two affiliated life insurers for alleged violations of New York’s Cybersecurity Regulation (the “NY...more

Society of Corporate Compliance and Ethics...

[Virtual Event] 2021 Higher Education Compliance Conference - June 14th - 16th, 9:00 am - 5:00 pm CDT

Society of Corporate Compliance and Ethics... on

Attend SCCE’s annual conference for those who manage compliance at higher education institutions. Learn best practices and strategies, ask questions of the speakers, and share ideas with other attendees. The 2021 virtual...more

Health Care Compliance Association (HCCA)

[Virtual Event] 2021 25th Annual Compliance Institute - April 19th - 22nd, 9:30 am - 4:35 pm CDT

Health Care Compliance Association (HCCA) on

The Compliance Institute is celebrating 25 years! Join us for the Compliance Institute's 25th anniversary, April 19-22, 2021. This year, HCCA is excited to celebrate over two decades of compliance excellence with our...more

29 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide