• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

Amy Mushahwar

NYDFS Issues Guidance on Cybersecurity Controls to Combat Ransomware and Clarifies Reporting Obligations

July 3, 2021 By Lance Taubin, Kate Hanniford, Kim Peretti and Amy Mushahwar

The New York Department of Financial Services (NYDFS) issued new guidance this week intended to assist organizations in thwarting ransomware attacks. The guidance clarifies the NYDFS’ expectation that NYDFS-regulated companies should “implement these controls whenever possible” and report any successful deployment of ransomware or unauthorized access to privilege accounts to the NYDFS under its established […]

Filed Under: Cybersecurity, NYDFS Tagged With: Ransomware

Russia Sanctioned For Role In SolarWinds Supply Chain Attack

April 20, 2021 By Amy Mushahwar

On April 15, 2021, the Biden Administration took a significant step in announcing sanctions against the Russian Government and private Russian entities for multiple internationally-destabilizing activities, including the Russian Foreign Intelligence Service’s (SVR) supply chain attack of the SolarWinds Orion platform and other technology infrastructures. In addition to the sanctions, the Administration also provided practical […]

Filed Under: Cybercrime, Digital Crimes, Enforcement, National Security, Russia

State Financial Regulators Issue Ransomware Mitigation Tool

October 16, 2020 By Kim Peretti, Amy Mushahwar and Alysa Austin

On October 13, 2020, state financial regulators in partnership with the Bankers Electronic Crimes Taskforce and the U.S. Secret Service, released the Ransomware Self-Assessment Tool (R-SAT) to help financial institutions mitigate the risks of ransomware.  The R-SAT is a detailed questionnaire designed to evaluate the effectiveness of an institution’s general security controls as well as […]

Filed Under: Cyber Risk, Cybercrime, Cybersecurity, Data Breach, Data Protection, Data Security, Digital Crimes, Enforcement, Financial Privacy, Privacy

The NYDFS Brings First Enforcement Action under the Cybersecurity Regulation

July 27, 2020 By Kim Peretti, Amy Mushahwar and Dorian Simmons

On Tuesday, July 21, 2020, the New York Department of Financial Services (the “NYDFS”) brought its first enforcement action under its Cybersecurity Regulation (the “Regulation”) against a large title insurer (the “Company”) for failing to protect sensitive personal information.  The NYDFS is seeking civil monetary penalties, an order requiring the Company to remedy the alleged […]

Filed Under: Cybersecurity, Data Protection, Data Security, Enforcement, Financial Privacy, Insurance Data Security, NYDFS, Regulation

UK National Cyber Security Centre Advisory: Russian Attackers, APT29, Targets Companies Involved in COVID-19 Vaccine Development

July 17, 2020 By Amy Mushahwar and Kim Peretti

Yesterday, the UK National Cyber Security Centre and Canada’s Communications Security Establishment released an advisory linking APT29 (also known as, ‘the Dukes’ or ‘Cozy Bear’) to attacks against COVID-19 vaccine development in Canada, the US and the UK.  The Advisory stated that APT29 is “almost certainly part of the Russian intelligence services.”  APT29/Cozy Bear was […]

Filed Under: Advisories, Cyber Risk, Cybercrime, Cybersecurity, Data Protection, Data Security, Digital Crimes, National Security

  • « Go to Previous Page
  • Go to page 1
  • Go to page 2
  • Go to page 3
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up

@ALSTONPRIVACY
Click here to follow us on Twitter

Secondary Sidebar

Categories

Recent Posts

  • CPPA Publishes Revised Cybersecurity Audit Regulations in Advance of Board Meeting
  • Colorado AG Publishes Shortlist of Universal Opt-Out Mechanisms
  • Ransomware Group, in Midst of Extortion Attempt, Files Regulatory Notice with SEC
  • FTC Approves New Data Breach Notification Requirement for Non-Banking Financial Institutions
  • China Releases Major Changes in its Draft Regulations on Cross-border Data Flows
Copyright © 2023 · Alston & Bird · All Rights Reserved. Privacy.