Alston & Bird Privacy, Cyber & Data Strategy Blog

Combatting the New Insider Threat: North Korean IT Workers Posing as Remote Employees

November 6, 2024 By Kim Peretti and Zain Haq

The New York Department of Financial Services issued a cybersecurity advisory on November 1, 2024, regarding a growing threat posed by North Korean operatives seeking remote IT roles at U.S. companies. These operatives secure jobs at prominent companies, generate revenue for the regime, and have the potential to expose sensitive corporate data. These highly sophisticated threat actors use a range of tactics to disguise their identities and infiltrate businesses, posing significant security … [Read more] about Combatting the New Insider Threat: North Korean IT Workers Posing as Remote Employees

Massachusetts Top Court Torpedoes Website Analytics Wiretapping Class Action

October 30, 2024 By Donald Houser, Ashley Miller and Nicole Weeks

On October 24, 2024, in a long-awaited decision in Vita v. New England Baptist Hospital, Massachusetts’ highest court snuffed out an attempt to use the state’s 1968 Wiretap Act to impose liability on a hospital system for its use of third-party … [Read more] about Massachusetts Top Court Torpedoes Website Analytics Wiretapping Class Action

Summary of Changes from DoD CMMC Proposed Rule to Final Rule

October 29, 2024 By Kim Peretti, Andrew Liebler, Lance Taubin and Andrew Rice

On October 11, 2024, the Department of Defense (“DoD”) issued its Final Program Rule for the Cybersecurity Maturity Model Certification (“CMMC”) Program. The Final Rule is a signal to federal contractors to develop compliance programs pertaining to … [Read more] about Summary of Changes from DoD CMMC Proposed Rule to Final Rule

SEC 2025 Examination Priorities Indicate Sustained Focus on Cybersecurity & Data Protection

October 28, 2024 By Kate Hanniford and Kristen Bartolotta

The SEC has released its Examination Priorities: Fiscal Year 2025 (“Examination Priorities”), which may be a useful roadmap to SEC-registered investment advisers, exchanges, and other entities subject to routine examination by the SEC Division of … [Read more] about SEC 2025 Examination Priorities Indicate Sustained Focus on Cybersecurity & Data Protection

President Biden Signs First National Security Memorandum Focused on AI

October 27, 2024 By Kim Peretti, Kate Hanniford, Kellen Dwyer and Daniel Felz

On October 24, 2024, President Biden signed the first-ever National Security Memorandum (“NSM”) focused on artificial intelligence (“AI”), pursuant to subsection 4.8 of Executive Order 14110. The NSM provides guidance on developing, employing, and … [Read more] about President Biden Signs First National Security Memorandum Focused on AI