Data Security Law Blog is the firm’s resource for the latest news, analysis, and thought leadership in the critical area of privacy and cybersecurity law.

Recent Blog Posts

  • SEC Warns of Ransomware Attacks The U.S. Securities and Exchange Commission is asking broker-dealers, investment advisers and funds to redouble their cybersecurity efforts in wake of the global cyber-attack of the WannaCry virus that has spread to more than 150 countries, disrupting critical sectors of the world economy – from transportations systems to healthcare. In a “Ransomware Alert” issued yesterday,... More
  • Craig Newman will Present Webinar on “How the Cybersecurity Executive Order Impacts Today’s IT Risk Strategy” On Tuesday, June 6th, Craig Newman will co-present a webinar with Steven Grossman, VP of Strategy and Enablement at Bay Dynamics, entitled, "How the Cybersecurity Executive Order Impacts Today’s IT Risk Strategy". Two events in a single month recently reshaped the cyber-security landscape – the President’s Cybersecurity Executive Order and a massive ransomware attack that... More
  • FBI Issues Ransomware Warning Amid cyber-attacks that have spread around the globe affecting at least 150 countries, the Federal Bureau of Investigation has issued a FLASH report warning of the effects of a ransomware known as “WannaCry.” The warning – issued in conjunction with the U.S. Department of Homeland Security – says that “tens of thousands of infections” have been... More
  • The Tanium Affair Reminds Us That Cybersecurity Risks Are Everywhere The Wall Street Journal recently reported that well-known cybersecurity startup Tanium, Inc. had been inadvertently exposing one of its clients’ sensitive data during product demonstrations.  Unbeknownst to the Tanium client—the non-profit El Camino Hospital, in Santa Clara County, California—Tanium had been giving prospective customers a look inside of El Camino’s secure network to show how... More
  • Facebook Warrant Case: Stark Debate and a Divided Court We previously posted about a case before the New York Court of Appeals that concerned whether Facebook has the legal standing to challenge search warrants seeking its users’ data.  In April, the court sided with the Manhattan District Attorney’s office and rejected Facebook’s challenge.  The three opinions by the judges—particularly the concurrence by Judge Jenny... More
  • Dismissal in Michael Stores Data Breach Case In the latest decision on Article III standing in a data breach case, the U.S. Court of Appeals for the Second Circuit ruled that a credit card holder – who neither pleaded specific facts about the time or effort spent monitoring her credit after a data breach, nor sought leave to amend her complaint to... More
  • FBI Warns of Cyber Threat in Healthcare Sector The FBI is warning the healthcare sector of a new cyber threat. In a Notification issued last week, the FBI said that it is “aware of criminal actors who are actively targeting” protected healthcare information (“PHI”) and other personally identifiable information (“PII”) from medical facilities “to intimidate, harass, and blackmail business owners.” The warning targets... More
  • Craig A. Newman will Present on Implementing the New DFS Cybersecurity Regulation at a Cardozo Data Law Initiative CLE Program on April 28th in New York City Craig A. Newman will be speaking on a panel entitled, “Implementing the New DFS Cybersecurity Regulation” at a Cardozo Data Law Initiative CLE Program on April 28th in New York City. The Cardozo Data Law Initiative is a program designed to prepare law students for careers in the rapidly expanding legal fields of information governance,... More
  • Patterson Belknap Publishes Mini-Treatise on New York Cyber Regulation Patterson Belknap Webb & Tyler LLP is pleased to announce the publication of New York’s Cybersecurity Regulation for Financial Institutions- a New Age of Cybersecurity Regulation: Raising the Bar and Demanding Leadership Accountability, published by and available on Bloomberg Law. The mini-treatise provides a general overview of the sweeping new cybersecurity regulation issued by the New... More
  • Colorado Regulator Proposes New Cybersecurity Rules for Financial Institutions Increasingly, states are enacting cybersecurity regulations for financial institutions and investment advisors.  Following New York’s groundbreaking regulation (which we have covered in detail here), Colorado recently proposed changes to its state securities act that would impose new cybersecurity requirements on broker-dealers and investment advisors that operate in the state.  On March 27, the Colorado Department... More