News & Analysis as of May 6, 2025

Cybersecurity › Third-Party Service Provider › Supply Chain

+ Follow

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now. less -

New York State Department of Financial Services Releases Guidance on Combating Cybersecurity Risks Associated With AI

Ogletree, Deakins, Nash, Smoak & Stewart,... on 11/13/2024

On October 16, 2024, the New York State Department of Financial Services (NYDFS) released guidance highlighting the cybersecurity risks associated with artificial intelligence (AI) and how covered entities regulated by NYDFS...more

NYDFS Issues Guidance to Mitigate AI Cybersecurity Risks

Husch Blackwell LLP on 11/1/2024

Keypoint: The New York Department of Financial Services (NYDFS) circulated an industry letter offering guidance to NYDFS “Covered Entities” for assessing and managing AI-related cybersecurity risks, including threats...more

Navigating Facilities Management Outsourcing in a Post-COVID World

Mayer Brown on 10/22/2024

The COVID-19 pandemic has significantly reshaped the facilities management (FM) outsourcing landscape. Companies have transitioned from fully office-based work to home-based work, and now to hybrid models, prompting a...more

Supply Chain Attacks in the UK: Reducing Risk and Preparing for Upcoming Legal Changes

Ogletree, Deakins, Nash, Smoak & Stewart,... on 9/26/2024

Effective information security is no longer just dependent on an organisation’s own internal cybersecurity controls. The UK Information Commissioner’s Office (ICO) highlights that third-party service providers are processing...more

EU Cyber Legislation Puts Emphasis on Board Responsibility

Mayer Brown on 3/8/2024

What is a Management Body? Under both DORA and NIS2, a management body can be a body with managerial and/or supervisory functions. The powers and structure of management bodies vary within the EU Member State, and managerial...more

SolarWinds Hackers Focus on Downstream Vendors as Next Victims

Robinson+Cole Data Privacy + Security Insider on 10/29/2021

In a blog post entitled “New activity from Russian actor Nobelium,” Microsoft’s V.P. of Customer Security & Trust Tom Burt discussed a recent alert issued by the Microsoft Threat Intelligence Center (MSTIC) regarding the...more

Cybersecurity Guidance Issued to Retirement Plan Sponsors

Sheppard Mullin Richter & Hampton LLP on 6/8/2021

The Department of Labor recently issued cybersecurity guidance to retirement plans. The department’s Employee Benefits Security Administration (EBSA) issued guidance in three areas: (1) hiring and working with vendors and...more

NYDFS Issues Supply Chain Management Guidance

Sheppard Mullin Richter & Hampton LLP on 5/26/2021

The New York State Department of Financial Services recently issued recommendations to financial institutions in the aftermath of the SolarWinds cyberattack. In that attack, hackers inserted malware into SolarWinds software...more

NYDFS recommends critical new practices to reduce supply chain risk in wake of SolarWinds attack

Hogan Lovells on 5/5/2021

On April 27, 2021, the New York State Department of Financial Services (“DFS” or the “Department”) released a report regarding its investigation into the response by DFS covered entities to the SolarWinds supply chain attack....more

9 Results

/

View per page

Page: of 1