Category Archives: Cybersecurity

Kim Peretti and Dominique Shelton Speaking at Georgetown’s 2015 Cybersecurity Law Institute

Written by
Kim Peretti and Dominique Shelton will be featured speakers at the 3rd Annual Cybersecurity Law Institute, hosted by Georgetown Law Continuing Legal Education, and co-sponsored by the American Bar Association Cybersecurity Legal Task Force, Bloomberg BNA, and the Center for Internet Security. The Institute, designed by a national advisory board of professionals, will be held on May 20-21, 2015. This two-day program is a highly-regarded event in the cybersecurity space and will provide in-house and outside counsel with the practical, pragmatic advice they need to effectively address today’s [...] Read more

New York State Regulator to Examine Insurers on Cybersecurity Following Comprehensive Risk Assessments

Written by
On March 26, 2015, Benjamin Lawsky, Superintendent of the New York State Department of Financial Services (DFS), sent a letter to the CEOs, General Counsel, and Chief Information Officers of all insurers doing business in the state to inform them of a mandatory cybersecurity questionnaire and the initiation of targeted cybersecurity examinations.  Approximately 160 insurers will be affected by the initiative. In the letter, Lawsky “encourages all [financial] institutions to view cyber security as an integral aspect of their overall risk management strategy, rather than solely as a subset [...] Read more

FFIEC Issues Warnings on Malware and Cyber Attacks

Written by
The Federal Financial Institutions Examination Council (FFIEC) has issued two joint statements warning of specific cyber risks.  The warnings, which were issued on March 30, 2015, address risks arising from destructive malware, which can destroy sensitive data, and cyber-attacks that compromise user credentials.  In both statements, the FFIEC also provides guidance on how to mitigate these risks. The statement on destructive malware warns financial institutions about the increasing use of malware that successfully compromises databases and destroys the information or renders the system hosting [...] Read more

President Obama Signs Executive Order Authorizing Sanctions for Cyber Attacks, Use of Stolen Data

Written by
On April 1, 2015, the White House unveiled Executive Order 13694, which authorizes the Treasury Department to sanction entities outside of the United States that engage in “cyber-enabled activities” that are “reasonably likely to result in, or have materially contributed to, a significant threat to the national security, foreign policy, or economic health or financial stability of the United States.” The Executive Order (“EO”), titled “Blocking the Property of Certain Persons Engaging in Significant Malicious Cyber-Enabled Activities,” contemplates sanctions against entities conducting [...] Read more

FCC Advisory Group Issues Cyber Risk Management Report

Written by
On March 18, the Federal Communications Commission (“FCC”) approved the Final Report on cybersecurity risk management and best practices issued by Working Group 4 (“WG4”) of its Communications, Security, Reliability, and Interoperability Council (“CSRIC”).  The CSRIC, currently in its fourth assembly, is an advisory committee tasked with providing recommendations to the FCC to achieve “among other things, optimal security and reliability of communications systems…”  The report was created in response to WG4’s mission to “develop voluntary mechanisms to provide macro-level [...] Read more

White House Releases Consumer Privacy Bill of Rights

Written by
On February 27, 2015, the Obama Administration released a discussion draft of the Consumer Privacy Bill of Rights Act of 2015 (the “Privacy Act”), holding true to President Barack Obama’s commitment in 2012 to introduce legislation to put the Privacy Act’s principles into law.  The Privacy Act is intended to “establish baseline protections for individual privacy in the commercial arena and to foster timely, flexible implementation of [the] protections through enforceable codes of conduct.” The Privacy Act seeks to regulate a broad variety of covered entities, which are persons that [...] Read more

Webinar: Advising the C-Suite and Boards of Directors on Cybersecurity

Written by
On February 11, 2015, Alston & Bird hosted a webinar entitled “Advising the C-Suite and Boards of Directors on Cybersecurity.” Panelists included Alston & Bird attorneys Jessica Corley, Scott Ortwein and Kim Peretti, with Jim Harvey as the moderator. The cybersecurity legal landscape is rapidly unfolding due to the mass number of companies whose systems, data, and assets are networked and connected to the internet, as well as the surge of unprecedented attacks. Cybersecurity is no longer solely a concern for a company’s CIO or CISO, but also a concern for all members of the c-suite [...] Read more

Alston & Bird Privacy Program: An Interactive Discussion on How EU Data Laws are Undergoing Profound Changes

Written by
On February 4, Alston & Bird’s Los Angeles office hosted a presentation on EU data laws and US data laws with two leading experts from Olswang LLP, Ross McKean and Andreas Splittgerber. Alston’s Dominique Shelton moderated while McKean and Splittgerber shared their views on the profound changes occurring in EU data protection laws. It was a lively discussion that included the ramifications of the Google Spain decision and looked ahead to the upcoming EU Data Protection Regulation. The discussion provided a valuable opportunity to consider how U.S. companies can comply with the relevant [...] Read more

A&B Senior Counsel Peter Swire to Debate Consumer Privacy at Privacy Summit

Written by
On March 4-6, the International Association of Privacy Professionals (IAPP) will host its annual Global Privacy Summit in Washington, D.C. The Summit regularly attracts thousands of academics, officials, and privacy professionals. Those attending the Summit this year especially will not want to miss Alston & Bird Senior Counsel Peter Swire as he discusses and debates the future of consumer privacy with Stanford’s Jonathan Mayer. Peter previews his planned debate with Jonathan in an article published by the IAPP yesterday. The pair’s session is expected to focus on government oversight [...] Read more

White House Summit on Cybersecurity and Consumer Protection

Written by
On February 13, 2015, the White House held its first Summit on Cybersecurity and Consumer Protection at Stanford University. The Summit convened leaders from the federal government, business sector, technology industry, law enforcement, academia, and law not only to celebrate accomplishments in cybersecurity, but also to discuss opportunities for improvement in the cybersecurity and data privacy space. The Summit showcased panel discussions addressing a myriad of issues including public-private collaborations and partnerships in cybersecurity, improvements in cybersecurity practices at consumer [...] Read more