News & Analysis as of May 5, 2025

Cybersecurity › Safeguards Rule › Cyber Incident Reporting

+ Follow

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now. less -

FTC cyber breach notification rules: If you’re a non-banking financial institution, here’s what you need to know.

Constangy, Brooks, Smith & Prophete, LLP on 11/18/2024

Financial institutions are now required to notify the Federal Trade Commission about any security breach that involves the information of 500 customers or more. The breach must be reported no later than 30 days after it is...more

U.S. SEC Adopts Amendments to Reg S-P

Morrison & Foerster LLP on 5/29/2024

On May 16, 2024, the SEC adopted amendments to Regulation S-P (“Reg S-P”). The finalized amendments (the “Amendments”) to Reg S-P are designed to address the expanded use of technology and corresponding risks that have...more

Reminder: FTC Safeguards Rule Notification Requirement Now In Effect

Sheppard Mullin Richter & Hampton LLP on 5/20/2024

On May 13, the FTC’s amendment to the Safeguards Rule relating to the reporting of data breaches and security incidents, which were announced in October of 2023, became effective. As a reminder, the FTC’s Safeguards Rule...more

Federal Government Continues Its Big Push for Cybersecurity with SEC Action Against SolarWinds and Its CISO

Bradley Arant Boult Cummings LLP on 11/27/2023

On October 30, 2023, the Securities and Exchange Commission (SEC) announced a civil suit against SolarWinds and their chief information security officer (CISO) for fraudulent cybersecurity information. The SEC claims that...more

FTC Adopts Data Breach Notification Obligations for Non-Banking Financial Institutions

Polsinelli on 11/14/2023

On October 27, 2023, the Federal Trade Commission (“FTC”) adopted an amendment to the FTC’s Safeguards Rule that will require non-banking financial institutions to notify the FTC within thirty days of discovering a data...more

SEC to Impose Significant New Privacy and Cybersecurity Rules for BDs, RIAs, TAs, and Mutual Funds

Goodwin on 4/14/2023

The SEC continues its overhaul of cybersecurity, cyber incident reporting, and privacy controls and requirements for industry registrants, their services providers, and corporate America generally. On March 15, 2023, the SEC...more

Cybersecurity Enforcement Has Increased, and 2023 Will Be Worse!

Bradley Arant Boult Cummings LLP on 3/7/2023

The government’s announcement of renewed emphasis on cybersecurity enforcement has spawned recent million-dollar enforcement actions. Continued government attention on cybersecurity promises a treacherous enforcement...more

SEC Makes Cybersecurity Top Priority; Sanctions Firms for Cybersecurity Failures

Goodwin on 9/16/2021

There is little doubt that the U.S. Securities and Exchange Commission is making cybersecurity a top priority. SEC Chair Gary Gensler told a Senate committee on Tuesday, September 14, 2021 that the agency is developing a...more

8 Results

/

View per page

Page: of 1