News & Analysis as of May 8, 2025

Cybersecurity › New York

+ Follow

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now. less -

New York Cybersecurity Regulation Requires Submission of Compliance Certification or Acknowledgement of Noncompliance Next Week

Quarles & Brady LLP on 4/10/2025

On April 3, 2025, the New York State Department of Financial Services (“DFS”) issued reminders about upcoming implementation and reporting deadlines related to its cybersecurity regulations. Upcoming deadlines require...more

NY Settles With Insurer on Data Breach Rooted in Security Deficiencies

Cozen O'Connor on 3/28/2025

New York AG Letitia James settled with Root Insurance Company to resolve allegations that the company’s data security deficiencies led to a 2021 data breach involving 72,000 people, in violation of state consumer protection...more

May 1 Deadline for Amendments to NY Department of Financial Services Cybersecurity Standard

Harris Beach Murtha PLLC on 2/28/2025

New York State’s Department of Financial Services is warning all regulated entities has released a Cybersecurity Regulation Updates and Reminder warning all companies that all regulated entities without a full exception that...more

Lessons from PayPal’s $2 Million Cybersecurity Settlement with the New York State Department of Financial Services

Faegre Drinker Biddle & Reath LLP on 2/14/2025

On January 23, 2025, PayPal settled an enforcement action brought by the New York State Department of Financial Services (NY DFS) for failing to comply with cybersecurity regulations required for financial services businesses...more

Oh No, Canada! Takeaways from the Indictment of a Canadian National Allegedly Responsible for $65 Million DeFi Cryptocurrency...

Faegre Drinker Biddle & Reath LLP on 2/11/2025

On February 3, 2025, the U.S. Attorney’s Office for the Eastern District of New York (EDNY) unsealed an indictment against Andean Medjedovic, a 22-year-old Canadian national, for allegedly stealing approximately $65 million...more

New Year, New Protections for New York Artists and AI-Generated Replicas

Sheppard Mullin Richter & Hampton LLP on 1/7/2025

New York has a new AI-related law which took effect January 1. The law regulates creation and use of digital replicas of an individual’s voice or likeness and is similar to those in California and Tennessee....more

New York Adopts Comprehensive Hospital Cybersecurity Requirements

Sheppard Mullin Richter & Hampton LLP on 1/6/2025

Cyberattacks on healthcare organizations are on the rise, with the number of affected individuals nearly tripling between 2022 and 2024, according to data compiled by the Department of Health and Human Services Office for...more

Hospital Administrators – Is Your Hospital Cyber-Secure?

Lippes Mathias LLP on 11/20/2024

On October 2, 2024, New York adopted new regulations requiring general hospitals to implement heightened cybersecurity safeguards. General hospitals, as defined in Article 28 of the NY Public Health Law, generally must begin...more

New York State Department of Health Adopts Hospital Cybersecurity Regulations

Husch Blackwell LLP on 11/13/2024

In November 2023, New York Governor Kathy Hochul announced proposed regulations that would be the first state regulations for hospitals in New York. The governor described the proposed regulation as a “nation-leading...more

New York Focuses on Healthcare Cybersecurity: Recent Regulatory and Enforcement Activities

Akerman LLP - Health Law Rx on 11/12/2024

The healthcare sector has seen an alarming uptick in cybersecurity incidents, including ransomware attacks, in recent years. In response to these cybersecurity threats, New York State is ramping-up efforts to protect patient...more

New York Imposes Stringent Cybersecurity and Cyber Incident Reporting Obligations on Hospitals

Jones Day on 11/7/2024

New York recently passed new cybersecurity regulations for hospitals licensed in New York to enhance patient safety and cybersecurity....more

New York State Department of Financial Services Issues Guidance Concerning Cybersecurity Risks Posed by Artificial Intelligence

Baker Botts L.L.P. on 11/6/2024

Last month, the New York State Department of Financial Services (“DFS”), which has broad regulatory powers over financial services-related entities and insurance companies operating in New York State, published guidance...more

AI at the gate: NYDFS issues guidance on addressing new AI-driven cybersecurity risks under existing cybersecurity requirements

Eversheds Sutherland (US) LLP on 10/30/2024

On October 16, 2024, the New York State Department of Financial Services (DFS) issued an industry letter providing guidance on how DFS-regulated entities (covered entities) should be evaluating and responding to artificial...more

Amendments to NYDFS’ Cybersecurity Regulations Take Effect November 1

Sheppard Mullin Richter & Hampton LLP on 10/29/2024

The New York Department of Financial Services has modified its cybersecurity requirements for regulated entities. These requirements are in addition to those included in the regulations as last updated in November of last...more

NY-licensed financial services companies must harden incident response plans, improve breach readiness by November 1

Constangy, Brooks, Smith & Prophete, LLP on 10/28/2024

New York’s Cybersecurity Regulation continues its phased roll-out on November 1, when licensed financial services companies face a host of new requirements aimed at bolstering breach readiness and improving their ability to...more

Good news for businesses: NYS courts will dismiss data breach class actions for lack of concrete harm to plaintiff

Constangy, Brooks, Smith & Prophete, LLP on 10/21/2024

Data breaches have become a serious issue for businesses, leading to numerous putative class action lawsuits alleging that the defendants failed to prevent the unauthorized disclosure of personally identifiable information or...more

Reminder: More New York Department of Financial Services (NYDFS) Requirements Go Into Effect Next Month

Paul Hastings LLP on 10/11/2024

As we have previously written, late last year the New York Department of Financial Services (NYDFS) adopted long-awaited amendments to its Part 500 Cybersecurity Regulations (Part 500). These are some of the most significant...more

New York DFS Cybersecurity Regulation Outlines Actions with High ROI

Quarles & Brady LLP on 10/10/2024

As of November 1, 2024, financial services companies regulated by the New York Department of Financial Services Cybersecurity Regulation face new requirements relating to cybersecurity governance, encryption, and incident...more

Cookie Cutter: NY AG Announces Cookie Scrutiny with Business Guide to Website Privacy Controls

Wyrick Robbins Yates & Ponton LLP on 8/6/2024

Website privacy controls—in the form of banners and pop-ups asking visitors to agree to, or reject, a website’s use of cookies, pixels, and similar technologies used to track their behavior—are becoming ubiquitous. In the...more

New York Legislature Passes a Pair of Bills to Protect Children's Privacy Online

Wilson Sonsini Goodrich & Rosati on 6/19/2024

On June 7, 2023, the New York legislature passed the Stop Addictive Feeds Exploitation (SAFE) for Kids Act (SAFE Act or the Act) and the New York Child Data Protection Act (CDPA), both aimed at protecting children online. The...more

Privacy Tip #393 – Phishing, Smishing, Vishing and Qrishing Schemes Continue to Dupe Users

Robinson+Cole Data Privacy + Security Insider on 4/12/2024

The recent increase in smishing and vishing schemes is prompting me to remind readers of schemes designed to trick users into providing credentials to perpetrate fraud. We have previously written on phishing, smishing,...more

NY State Bar Association Joins Florida and California on AI Ethics Guidance – Suggests Some Surprising Implications

Sheppard Mullin Richter & Hampton LLP on 4/8/2024

The NY State Bar Association (NYSBA) Task Force on Artificial Intelligence has issued a nearly 80 page report (Report) and recommendations on the legal, social and ethical impact of artificial intelligence (AI) and generative...more

[Webinar] “Reasonable” Cyber Best Practices: Sword or Shield? - April 24th, 1:00 pm - 2:00 pm ET

EDRM - Electronic Discovery Reference Model on 3/13/2024

In an era where digital information flows ceaselessly, the specter of data breaches looms large. Whether these breaches are the result of deliberate attacks or unintentional leaks, they can range from being merely...more

Ransomware Attack Affects Millions, New York Hospitals and Pharmacies

Harris Beach Murtha PLLC on 3/7/2024

A ransomware attack on Change Healthcare, a technology company owned by UnitedHealth that touches one of every three U.S. patient records, has resulted in hospitals and pharmacies across New York facing a cash crunch. The...more

NYS DOH Requests Applications for Health Care Facility Transformation Program

Harris Beach Murtha PLLC on 1/23/2024

The New York Department of Health (DOH) recently announced it is accepting applications for the Statewide Health Care Facility Transformation Program IV. The grants will distribute $250 million to support capital projects and...more

71 Results

View per page

Page: of 3

Cybersecurity › New York

"My best business intelligence, in one easy email…"