Insider Trading Ahead of Cyber Breach Announcements

By Zhaoxin Lin, Travis R.A. Sapp, Jackie Rees Ulmer and Rahul Parsa September 4, 2018 by renholding

On March 14, 2018, the Securities and Exchange Commission charged a former chief information officer of Equifax with insider trading. The complaint alleged that he profited from selling stock ahead of the September 2017 public announcement of a major cybersecurity …

Latham & Watkins Discusses New SEC Guidance on Cybersecurity

By Jennifer C. Archie and Serrin Turner June 5, 2018 by renholding

With so much boardroom attention on cybersecurity, directors continue to focus on the Securities and Exchange Commission (SEC) guidance issued earlier this year and its implications. The guidance adds specific expectations for disclosure controls and incident response procedures, and reiterates …

CamberView Partners Offers 2018 Proxy Season Preview

By Abe M. Friedman and Bob McCormick April 13, 2018 by renholding

With the vast majority of annual meetings set to be held in the coming weeks, the contours of the 2018 proxy season are coming into focus. While previous years are remembered for defining initiatives — “say on pay” in 2011, …

Wachtell Lipton Discusses Risk Management and the Board of Directors

By Martin Lipton, Wayne M. Carlin, Daniel A. Neff, Sabastian V. Niles and Andrew R. Brownstein April 4, 2018 by Carly Goeman

The past year has seen continued evolution in the political, legal and economic arenas as technological change accelerates. Innovation, new business models, dealmaking and rapidly evolving technologies are transforming competitive and industry landscapes and impacting companies’ strategic plans and prospects …

Debevoise Discusses the New SEC Cybersecurity Guidance

By Luke Dembosky, Jeremy Feigelson, Matthew E. Kaplan, Jim Pastore and Paul M. Rodel March 26, 2018 by renholding

On February 21, 2018, the SEC issued new Guidance regarding cybersecurity disclosure and governance requirements applicable to SEC reporting companies. In our earlier Client Update on this topic, we discussed the disclosure considerations addressed in the Guidance. In this Client …

SEC Releases Guidance on Disclosing Cybersecurity Risks and Incidents

By Jay Clayton February 22, 2018 by renholding

On February 20, the Securities and Exchange Commission approved the issuance of an interpretive release, available here, to provide guidance to public companies when preparing disclosures about cybersecurity risks and incidents. The release also communicates the Commission’s views on the

…

Wachtell Discusses What to Expect in White Collar and Regulatory Enforcement for 2018

By John F. Savarese, Ralph M. Levene, Wayne M. Carlin, David B. Anders, Jonathan M. Moses and Marshall L. Miller January 31, 2018 by renholding

In our memo last year, we acknowledged that it was close to impossible to predict the likely impact that the newly elected Trump administration would have on white-collar and regulatory enforcement. (White Collar and Regulatory Enforcement: What to Expect …

PwC Discusses SEC’s Increased Scrutiny of Robo-Advisers

By Dan Ryan, Julien Courbe, Adam Gilbert, Mike Alix and Roberto Rodriguez November 8, 2017 by renholding

Earlier this year, the Securities and Exchange Commission (SEC) issued guidance regarding “robo-advisers,” automated investment advice tools accessed via web-based or mobile platforms with minimal human interaction.¹ The guidance is an important reminder to the industry that robo-advisers are …

SEC Enforcement Co-Chief Talks Cybersecurity and Retail Investor Protection

By Stephanie Avakian November 1, 2017 by renholding

Good afternoon and thank you for inviting me to speak today. Before I begin, let me give the required disclaimer that the views I express here today are my own and do not necessarily represent the views of the Commission

…

Should Cybersecurity Be a Human Right?

By Scott Shackelford August 23, 2017 by renholding

The May 2017 WannaCry ransomware attack affected more than 200,000 computers spread across 150 nations. The results of the attack made clear that computers whose software is not up to date can hurt not only the computers’ owners, but ultimately …

Davis Polk Discusses Target’s Cyber Breach Settlement

By Avi Gesser, Michelle Ontiveros Gross, Jon Leibowitz, Neil H. MacBride and Antonio J. Perez-Marques June 7, 2017 by renholding

On May 23, Target Corp. reached a record $18.5 million settlement with 47 states and the District of Columbia to end investigations into Target’s data breach in 2013. The settlement highlights the growing list of specific measures that companies are …

PwC Discusses How Financial Institutions Can Bolster Defenses Against Risk

By Dan Ryan, Mike Alix, Armen Meyer and Adam Gilbert March 24, 2017 by renholding

Many financial institutions¹ have implemented the three Lines of Defense (LoD) model to help define their risk management frameworks and bolster supervisors’ (e.g., desk heads and senior traders) abilities to monitor risk.² However, as frameworks for managing financial …

Gibson Dunn Reviews U.S. Cybersecurity and Data Privacy

By Alexander H. Southwell, Eric Vandevelde, Ryan Bergsieker and Jeana Bisnar Maute February 3, 2017 by Jeff Himelson

In 2016, companies, governments, and consumers were again challenged to navigate an evolving landscape of cybersecurity and privacy issues. This year saw flash points impacting the trajectory for data breach litigation, the future for privacy class actions, and the scope …

Debevoise Analyzes Revised New York Cybersecurity Regulation for the Financial Sector

By Luke Dembosky, Eric R. Dinallo, Jeremy Feigelson, Jim Pastore and Maryam Casbarro January 17, 2017 by renholding

New York’s Department of Financial Services (DFS or the Department) has responded to a large volume of comments about its proposed, sweeping cybersecurity regulation for banks, insurers and other financial service providers by softening a number of provisions that many …

Sullivan & Cromwell Discusses Hacking and Cyber Threats to Director Communications

By Jay Clayton, John Evangelakos, Glen T. Schleyer, Marc Trevino and Joshua B. Wright November 30, 2016 by renholding

The growth in cybersecurity threats combined with the increasing demands placed on outside directors create challenges that often go beyond the risks that public companies face from employee and client communications. If public companies cannot communicate quickly with directors or …

PwC Discusses New York’s Proposed Cybersecurity Rules

By Dan Ryan, Sean Joyce, Joseph Nocera, Jeff Lavine and Didier Lavion September 26, 2016 by renholding

On September 13, 2016, the New York State Department of Financial Services (DFS) proposed a broad set of cybersecurity regulations for banks, insurers, and other financial institutions.[1] The proposal is largely consistent with existing guidance (e.g., under the NIST …

Debevoise & Plimpton discusses New York’s Proposed Cyber Regulations

By Eric R. Dinallo, Jeremy Feigelson, Gregory J. Lyons, James J. Pastore, Luke Dembosky and Naeha Prakash September 20, 2016 by renholding

On September 13, 2016, the New York Department of Financial Services (“DFS” or the “Department”) issued proposed regulations (the “Proposed Regulations”) designed to guard against the onslaught of cyber-attacks faced by banks, insurance companies and other financial services providers.[1]…

Morrison & Foerster Covers the Highlights of World Economic Forum’s Blockchain Report

By Joshua Ashley Klayman, F. Dario de Martino and Alisha J. Turak September 19, 2016 by renholding

The World Economic Forum threw a knockout punch last month when it released its report, “The Future of Infrastructure: An Ambitious Look at How Blockchain Can Reshape Financial Services.”[1] When Giancarlo Bruno, the World Economic Forum’s Head …

Shearman & Sterling offers the Lowdown on EU General Data Protection Law

By Richard C. Hsu, Jeewon Kim Serrato, Barnabas W.B. Reynolds, Andreas Löhdefink and Tobia Croff August 30, 2016 by renholding

On April, 27 2016, the European Council and Parliament finally adopted a new data protection law: the General Data Protection Regulation (GDPR). The following is a summary of key issues and a checklist of initial tasks to help you prepare …

Gibson Dunn explains the New EU-Wide Rules on Cybersecurity

By Alexander H. Southwell, Andrés Font Galarza and Eryk L. Dziadykiewicz August 24, 2016 by renholding

On July 6, 2016, the European Parliament officially adopted the Network and Information Security (NIS) Directive [1] which is expected to fully enter into force in May 2018. The NIS Directive is the first set of cybersecurity rules to be …

« Previous 1 2 3 4 5 Next »

The CLS Blue Sky Blog

Columbia Law School's Blog on Corporations and the Capital Markets

cybersecurity