No Password Required: SVP at SpyCloud Labs, Former Army Investigator, and Current Breakfast Champion
Monumental Win in Data Breach Class Action: A Case Study — The Consumer Finance Podcast
FBI Lockbit Takedown: What Does It Mean for Your Company?
Privacy Officer's Roadmap: Data Breach and Ransomware Defense – Speaking of Litigation Video Podcast
Cybersecurity in Video Games & Esports
2023 DSIR Deeper Dive: Plaintiffs’ Attorneys Are Trying to Assert a New Cause of Action Against Universities Based on an Old Law Regulating Videotape Service Providers
Podcast: A Conversation with Andy Rotherham on Hot Topics in Education for 2023
No Password Required: Threat Intelligence Analyst at Recorded Future, the Ransomware Sommelier, and a Guy With a Mildly Exciting Expense Account
Compliance & Disaster Preparedness
2023 DSIR Report Deeper Dive into the Data
Episode 282 -- CISO and CCOs -- The Evolving Partnership
No Password Required: Threat Researcher at Cisco Talos and a Veteran of the Highest-Profile Cyber Incidents Who Roasts His Own Coffee Beans
Innovation in Compliance - The Role of Backup Systems in Cybersecurity Defense with Curtis Preston
Cyber Threats
No Password Required: The Teenage CEO of Girls Who Hack and Secure Open Vote, Who Is as Comfortable Behind a Mic as She Is Behind a Keyboard.
Hinshaw Insurance Law TV – Cybersecurity Third and Final Part: Ransomware
Can Cyber Investigations Be Canned? - Unauthorized Access Podcast
[Podcast] NSA Cybersecurity Services for Defense Contractors
Understanding the Additional Risks When Making a Ransomware Payment
2022 DSIR Deeper Dive: Ransomware
On January 16, 2025, President Joe Biden issued the “Executive Order on Strengthening and Promoting Innovation in the Nation’s Cybersecurity,” a comprehensive directive designed to address the growing complexity and...more
Third parties have posed significant risks to companies for years, but perhaps more so now than ever before. Cyber threats, Russia sanctions, and a new wave of child labor in the United States are just a few risks making...more
On July 7, 2022, three federal agencies – the Federal Bureau of Investigation, the Cybersecurity and Infrastructure Security Agency, and the Department of the Treasury – issued a joint alert regarding Maui Ransomware, which...more
Closing the year with a renewed focus on the People’s Republic of China, the Biden Administration imposed new export restrictions on US-origin technology to Chinese tech firms to hinder the PRC’s military and security...more
On September 21, 2021, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) published an updated sanctions advisory, providing guidance to companies on sanctions compliance obligations related to ransomware...more
The Treasury Department’s Office of Foreign Assets Control (OFAC) took action last Monday, November 8, 2021, and sanctioned a Latvia-based exchange, Chatex, its associated support network, and two ransomware operators for...more
On November 8, 2021, the U.S. Department of Justice (“DOJ”), U.S. Department of the Treasury (“Treasury”), and the U.S. Department of State (“State”) made several significant announcements regarding recent U.S. government...more
1. New Cybersecurity Export Controls From BIS Go Into Effect in January - The Bureau of Industry and Security (BIS) has released an interim final rule establishing new export controls on certain cybersecurity items and...more
Federal officials have recently warned employers and businesses that they could have insult added to injury if they respond to cyberattacks by making ransomware payments – increasingly requested through cryptocurrency – as...more
Guidance Demonstrates OFAC’s Expectations for Sanctions Compliance by Cryptocurrency Industry - On October 15, 2021, the Office of Foreign Assets Control (“OFAC”) of the U.S. Department of the Treasury published Sanctions...more
Office of Foreign Assets Control (OFAC) released detailed sanctions compliance guidance for the virtual currency industry (the Guidance). The Guidance provides an overview of OFAC sanctions requirements and lists several best...more
On Friday, OFAC published a compliance guide aimed at the virtual currency industry, which promotes sanctions compliance amid the rise of ransomware attacks. Similar to OFAC’s recent advisory, this compliance guide is yet...more
In a keynote address at the Global Investigations Review Connect: New York conference on October 5, Principal Associate Deputy Attorney General John Carlin provided insights into future Department of Justice (“DOJ” or the...more
On September 21, 2021, the U.S. Department of the Treasury’s Office of Foreign Assets Control (“OFAC”) announced several actions focused on disrupting criminal digital finance infrastructure, including virtual currency...more
In the wake of increased ransomware attacks over the course of the last several months, the US Department of Treasury’s Office of Foreign Assets Control (OFAC) has updated a guidance it released last year on potential...more
The US Department of the Treasury’s Office of Foreign Assets Control (OFAC) recently issued an “Updated Advisory on Potential Sanctions Risks for Facilitating Ransomware Payments.” This advisory continues prior advisory...more
On September 21, 2021, the U.S. Department of the Treasury announced two major actions by the Office of Foreign Asset Control (OFAC) to combat ransomware: the release of OFAC's Updated Advisory on Potential Sanctions Risks...more
Ransomware payments continue to be a focus of the U.S. Treasury Department’s Office of Foreign Assets Control (“OFAC”). As previously reported by Foley Hoag, on October 1, 2020, OFAC released an advisory regarding potential...more
On Sept. 21, the Treasury’s Office of Foreign Assets Control (OFAC) issued an Advisory updating and superseding its previous advisory issued Oct. 1, 2020. OFAC is careful to note that the Advisory is not law, and does not...more
On 21 September 2021, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) issued an updated advisory that highlights the sanctions risks associated with making ransomware payments. OFAC reiterated...more
On September 21, 2021, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) issued an updated advisory outlining the risks involved with facilitating ransom payments to malicious actors conducting...more
On Tuesday, the U.S. Department of Treasury’s Office of Foreign Asset Control (“OFAC”) issued an updated advisory warning all ransomware victims that if they succumb to ransomware demands and pay foreign actors who are...more
Many companies have a “no ransomware payment” stance until faced with a ransomware attack, especially an attack that causes significant business disruption. At that point, the company may reconsider its stance (or at least...more
On September 21, 2021, the Treasury Department’s Office of Foreign Assets Control (OFAC) announced sanctions on SUEX OTC, S.R.O, a cryptocurrency exchange, for its role in laundering money to ransomware attackers. According...more
U.S.-Russia relations have been complicated, to say the least. Given Russia’s recent cyberattacks on SolarWinds and the government-directed attempts to influence the 2020 U.S. presidential election, the Biden administration...more