Inflation Reduction Act
New York's Deadline to Comply With New Data Privacy Law Fast Approaching
The Stop Hacks and Improve Electronic Data Security Act (known as the SHIELD Act), signed into law by Governor Cuomo last year, comes into full effect on March 21, 2020. The Act’s expansive reach requires businesses in New York, as...
DOJ Announces More Equifax Charges – Credits Chinese Hackers
On February 10, 2020, Attorney General William Barr announced the indictment of four members of the Chinese military on charges of hacking into Equifax’s computer networks, maintaining unauthorized access to those networks and stealing sensitive information. The announcement highlights one...
SEC Examiners Release Cyber Observations: What You Need To Know
On January 27, 2020, the SEC’s Office of Compliance Inspections and Examinations (OCIE) announced its most recent Cybersecurity and Resiliency Observations. This report highlights specific practices that have been, and can be taken to enhance cybersecurity preparedness and incident response...
Understanding Cyber Threats to State and Other Governmental Entities
Cyber criminals have targeted state and local governmental entities at an alarming rate. The threat and scale of cyber-attacks is unprecedented. Bracewell lawyers Phil Bezanson , Ed Fierro and David Springer will host a webinar to highlight the risks that...
Somebody's Watching EU: Washington State Senate Passes Privacy Legislation Similar to European Union's Data Privacy Regulations
Washington could be the next U.S. state to enact consumer privacy legislation similar to the EU's General Data Protection Regulation (GDPR). On Wednesday, the Washington state senate overwhelmingly approved the Washington Privacy Act , SB 5376 (the "WPA") which takes...
Sophisticated International Hackers Continue to Target the Public Sector
On November 26, 2018, the U.S. Department of Justice announced that it had secured an indictment of two hackers for using ransomware to extort over $6 million from municipalities, hospitals, and other public institutions. The very next day, a federal...
Navigating the Feds: The Risks and Rewards of Federal Contracting & Subcontracting in Cybersecurity
In August 2018, Angela Styles, Bob Wagman and Phil Bezanson gave a presentation at the Cyber Texas conference in San Antonio that analyzed the risks and rewards of federal contracting and subcontracting in Cybersecurity.
New York Cyber Enforcement Steps Into the Breach
Last month, the New York State Department of Financial Services (NYDFS) proclaimed, “In an era of weakened federal government oversight, strong state regulation is essential in order to safeguard our markets, ensure strong consumer protections and hold regulated entities accountable...
The First Day of the Rest of Our Lives? GDPR Activist Complaints Allege Shortcomings and Seek Maximum Penalties
This is not an email about what the General Data Protection Regulation (GDPR) is. We assume you've received dozens of those recently (including from us) . As those emails promised, GDPR Day 1 finally came. And it began with a...
Who Is Watching The Watchmen?: CFTC Penalizes Registrant For Outsourced IT Security Lapses
On February 12, 2018, the Commodity Futures Trading Commission (CFTC) settled charges against AMP Global Clearing LLC (AMP), a futures commission merchant (FCM), for the company’s failure to adequately supervise one of its IT providers, which led to the unauthorized...
A Cyber Incident Moves Pretty Fast, If You Aren't Ready To Respond, You Might Blow It
The Securities and Exchange Commission (SEC) expanded its warnings to public companies that generic disclosures identifying cybersecurity risk factors may be insufficient. Rather, the SEC seems to expect companies to conduct careful inward assessments that identify unique strengths and weaknesses...
CLOUD Act Aims for Clear Skies: Bipartisan CLOUD Act Seeks to Clarify Law Enforcement Access to Overseas Data
In October 2017, the Supreme Court granted the Department of Justice’s petition to review the Second Circuit’s decision that limits the reach of warrants issued under the Stored Communications Act (“SCA”). 1 Specifically, the Court will determine whether the SCA...
Hey, You, Get Off Of My Cloud – New DOJ Approach To Remote Data Storage
Last month, the Department of Justice’s Computer Crime and Intellectual Property Section, Criminal Division (“CCIPS”) issued new guidance advising prosecutors seeking enterprise customer data stored “in the cloud” to attempt to collect responsive information from the enterprise first, instead of...
Cyberattacked: The SEC Joins the Club
On September 20, the Securities and Exchange Commission announced that its system for electronic filing for public company disclosures, EDGAR, was compromised last year and that hackers may have used exposed information for illicit trading. The disclosure, which provided few...
Pennsylvania District Court Agrees That Google Must Give Up Foreign Server Data
On August 17, 2017, a Pennsylvania district court upheld a magistrate judge’s order that Google comply with warrants issued pursuant to the Stored Communications Act (“SCA”) and produce to the FBI data that was stored, in part, on servers abroad...