Debevoise & Plimpton discusses New York’s Proposed Cyber Regulations

By Eric R. Dinallo, Jeremy Feigelson, Gregory J. Lyons, James J. Pastore, Luke Dembosky and Naeha Prakash September 20, 2016 by renholding

On September 13, 2016, the New York Department of Financial Services (“DFS” or the “Department”) issued proposed regulations (the “Proposed Regulations”) designed to guard against the onslaught of cyber-attacks faced by banks, insurance companies and other financial services providers.[1]…

Morrison & Foerster Covers the Highlights of World Economic Forum’s Blockchain Report

By Joshua Ashley Klayman, F. Dario de Martino and Alisha J. Turak September 19, 2016 by renholding

The World Economic Forum threw a knockout punch last month when it released its report, “The Future of Infrastructure: An Ambitious Look at How Blockchain Can Reshape Financial Services.”[1] When Giancarlo Bruno, the World Economic Forum’s Head …

Shearman & Sterling offers the Lowdown on EU General Data Protection Law

By Richard C. Hsu, Jeewon Kim Serrato, Barnabas W.B. Reynolds, Andreas Löhdefink and Tobia Croff August 30, 2016 by renholding

On April, 27 2016, the European Council and Parliament finally adopted a new data protection law: the General Data Protection Regulation (GDPR). The following is a summary of key issues and a checklist of initial tasks to help you prepare …

Gibson Dunn explains the New EU-Wide Rules on Cybersecurity

By Alexander H. Southwell, Andrés Font Galarza and Eryk L. Dziadykiewicz August 24, 2016 by renholding

On July 6, 2016, the European Parliament officially adopted the Network and Information Security (NIS) Directive [1] which is expected to fully enter into force in May 2018. The NIS Directive is the first set of cybersecurity rules to be …

Shearman & Sterling’s 2016 Mid-Year Review of Securities Enforcement

By Claudius Sokenu, Mark Lanpher, Jeff Hoschander, Mallory Brennan and Brian Calandra July 29, 2016 by renholding

Executive Summary[1]

The Securities and Exchange Commission (SEC or Commission) brought over 400 enforcement actions in the first half of fiscal year (FY) 2016, and is on pace to surpass its record of 807 enforcement actions in a single …

Financial Weapons and Modern Warfare

By Tom C.W. Lin July 26, 2016 by ilyabeylin

A new type of warfare is upon us. In this new mode of war, finance is the most powerful weapon, bullets are not fired, financial institutions are the targets, and almost everyone is at risk. Instead of smart bombs, improvised …

Dodd-Frank Stress Tests Are Fine, but We Need a Cybersecurity Stress Test, Too

By Keerthika M. Subramanian July 20, 2016 by renholding

Last week, news emerged that China had hacked the FDIC on several occasions during the past few years. This revelation renews concerns about the security of America’s financial institutions and comes on the heels of the third bank hacking through …

Kirkland discusses Private Fund Manager 2015 Review of Registered Investment Adviser Developments

By Robert Khuzami, Scott A. Moehrke P.C., Robert W. Pommer III, Jaime Doninger Schechter, Robert H. Sutton and Josh Westerholm January 29, 2016 by AJ

The year 2015 marked the fifth anniversary of passage of the Dodd-Frank Act and, for many private fund managers, the third anniversary of SEC registration under the Investment Advisers Act. The past year also saw a number of notable SEC …

Sullivan & Cromwell discusses The Cybersecurity Act of 2015

By John Evangelakos, Brent J. McIntosh, Jennifer L. Sutton, Corey Omer and Laura S. Duncan* (*not admitted to the bar) January 6, 2016 by ilyabeylin

On December 18, 2015, President Obama signed into law the Cybersecurity Act of 2015. The Act, arguably the most significant piece of federal cyber-related legislation enacted to date, establishes a mechanism for cybersecurity information sharing among private‑sector and federal government …

Latham & Watkins discusses Cybersecurity Due Diligence in M&A Transactions

By Jennifer Archie December 1, 2015 by AJ

To begin with a tautology, when you buy a company, you buy their data—and the attendant risks to that data. Cybersecurity risks are not limited to consumer-facing businesses, whose recent losses of cardholder or patient data grab news headlines. Indeed, …

WilmerHale reports ALJ Dismisses FTC’s LabMD Complaint for Lack of Actual or Probable Consumer Harm from Cybersecurity Incidents

By Jonathan G. Cedarbaum, D. Reed Freeman, Jr., Heather Zachary, Benjamin A. Powell and Leah Schloss November 25, 2015 by John Knight

On Friday, November 13, Federal Trade Commission (“FTC” or the “Commission”) Chief Administrative Law Judge (“ALJ”) D. Michael Chappell issued an Initial Decision in In the Matter of LabMD, Inc. (FTC Docket No. 9357), dismissing the Commission’s Complaint against LabMD, …

Morrison & Foerster explains ECJ Safe Harbor Opinion’s Implications for all Data Transfers out of Europe

By Miriam Wugmeister October 14, 2015 by John Knight

The European Court of Justice (ECJ) followed the core of the Opinion of the Advocate General (AG) (see our Privacy Minute dated October 3, 2015) in Schrems v. Data Protection Commissioner (Case No. C-362/14).

Summary

In sum, the ECJ …

Mayer Brown explains SEC’s Continued Focus on Cybersecurity

By Raj De, Jeffrey Taft, Adam Kanter and Matthew Bisanz September 29, 2015 by John Knight

On September 22, 2015, the US Securities and Exchange Commission (“SEC”) brought and settled charges against a registered investment adviser (the “RIA”) for violations of the Gramm-Leach-Bliley Act’s “safeguards rule” adopted under Regulation S-P.¹ These violations occurred immediately prior …

Cahill Gordon discusses Cybersecurity Developments and the Growing Role of Senior Executives and Directors

By David N. Kelley, Brockton B. Bosson and Sarah M. Schoenbach September 22, 2015 by John Knight

From the 2013 Target Corporation breach to this year’s attacks on Primera Blue Cross and American Airlines Group Inc., the issue of cybersecurity has emerged at the forefront of risks to be confronted by corporations across a spectrum of industries.…

Gibson Dunn discusses The Third Circuit Upholding the U.S. Federal Trade Commission’s Authority to Regulate Cybersecurity

By M. Sean Royall, Alexander H. Southwell, Ryan T. Bergsieker and Richard H. Cunningham September 17, 2015 by AJ

The Federal Trade Commission’s longstanding effort to establish itself as the primary federal regulator of cybersecurity survived its first appellate test on Monday when the Third Circuit allowed the FTC to continue pursuing its case against Wyndham Worldwide Corp.[1] The …

WilmerHale explains Federal Trade Commission’s “Start with Security” Guidance

By Jonathan G. Cedarbaum, Benjamin A. Powell, D. Reed Freeman, Jr., Leah Schloss and David P. Levine August 17, 2015 by AJ

On June 30, the Federal Trade Commission (FTC) issued its first guidance document as part of its Start with Security initiative. The initiative, announced by FTC Consumer Protection Director Jessica Rich in March, will initially focus on encouraging small and …

Simpson Thacher discusses SEC and FINRA Report on Cybersecurity Sweep Examinations and SEC’s Cybersecurity Guidance Update

By Rajib Chanda and Chris Healey May 19, 2015 by ilyabeylin

The SEC issued a National Exam Program risk alert summarizing OCIE’s cybersecurity examination sweep of advisers and broker-dealers on February 3, 2015 (SEC Risk Alert). On the same day, FINRA issued its report on cybersecurity practices of broker-dealers, based on …

PwC discusses Cyber-security: Think Risk Not IT

By Dan Ryan, Roozbeh Alavi, Armen Meyer, Doug Roeder and Grace Vogel May 8, 2015 by ilyabeylin

Despite millions of dollars spent on enhancements, cybersecurity remains the area of risk management with the largest gap between threat and preparedness. As the frequency and sophistication of cyber attacks have increased significantly in recent years, counter measures have failed …

Morrison & Foerster discusses SEC Report on Broker-Dealer and Investment Adviser Cybersecurity

By Daniel A. Nathan and Jay Baris February 19, 2015 by tharts1

An SEC cybersecurity sweep examination by the SEC’s Office of Compliance Inspections and Examinations (OCIE) found that 88 percent of the broker-dealers (BDs) and 74 percent of the registered investment advisers (RIAs) they visited experienced cyber-attacks directly or indirectly through …

« Previous 1 … 3 4 5

The CLS Blue Sky Blog

Columbia Law School's Blog on Corporations and the Capital Markets

cybersecurity