• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

Cyber Risk

Treasury Announces Sanctions Against Cybercriminal Group Behind ‘Dridex’ Malware, Offering Mitigation Strategies for Businesses

December 11, 2019 By Privacy, Cyber & Data Strategy Team

On December 5, 2019, the U.S. Treasury Department’s Office of Foreign Assets Control (OFAC) issued sanctions against Evil Corp, a Russian cybercriminal organization that is known for distributing the Dridex malware. Dridex is a banking trojan that has been used to target financial institutions across the globe and has resulted in more than $100 million […]

Filed Under: Cyber Risk, Cybercrime, Cybersecurity, Data Breach, Data Protection, Data Security, Digital Crimes, Enforcement, International, National Security Tagged With: Department of Justice (DOJ)

Critical Audit Matters Disclosure Implicates Information Technology and Security

November 6, 2019 By Kate Hanniford

As independent auditors to public companies and business development companies begin to make required disclosure of Critical Audit Matters (CAMs) to the audit committee, such reports are beginning to include discussion of information security programs and information technology controls.  Independent auditors have treated material weaknesses in certain information technology controls as material weaknesses in internal […]

Filed Under: Cyber Risk, Data Security, Regulation Tagged With: Cybersecurity, Disclosure, PCAOB, Securities and Exchange Commission

SHIELD Act Overhauls New York’s Data Breach Notification Framework

October 25, 2019 By Privacy, Cyber & Data Strategy Team

On October 23, 2019, New York’s new breach notification provisions came into effect, a result of New York’s passage of the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act) in July. That Act overhauled New York’s data privacy framework, expanding the list of data elements that are considered “private information” while growing the […]

Filed Under: Advisories, Cyber Risk, Cybersecurity, Data Protection, Data Security, Legislation, Online Privacy, Privacy

SEC Issues Risk Alert Noting Common Regulation S-P Compliance Issues

April 18, 2019 By Kate Hanniford

The SEC’s Office of Compliance Inspections and Examinations (“OCIE”) has issued a Risk Alert that provides an overview of the most common deficiencies or weaknesses in investment adviser and broker-dealer compliance with the Safeguards Rule, Regulation S-P, based on recent examinations.  Placed in context with prior OCIE Risk Alerts concerning cybersecurity practices and Regulation S-P […]

Filed Under: Cyber Risk, Data Protection, Data Security, Financial Privacy, Privacy Policy, Regulation

Companion Cybersecurity Disclosure Bills Introduced in U.S. Congress

March 20, 2019 By Kate Hanniford

On February 28 and March 13, 2019, members of the U.S. Senate and U.S. House of Representatives introduced legislation designed to enhance the transparency of cybersecurity risk oversight at certain SEC reporting companies. Although the text of the House bill, H.R. 1731 is not yet publicly available, the bipartisan Senate bill, S. 592, would require […]

Filed Under: Cyber Risk, Cybersecurity, Legislation, Regulation

  • « Go to Previous Page
  • Page 1
  • Interim pages omitted …
  • Page 9
  • Page 10
  • Page 11
  • Page 12
  • Page 13
  • Interim pages omitted …
  • Page 17
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


RANSOMWARE FUSION CENTER
Click here to request access

THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up

@ALSTONPRIVACY
Click here to follow us on Twitter

Secondary Sidebar

Categories

Recent Posts

  • CISA Issues Enhanced Guidance to Mitigate Cyber Threats to Operational Technology Systems
  • CPPA Issues Revised Draft CCPA Regulations; Votes to Initiate Public Comment Period
  • UK Data Protection Regulator Fines UK Law Firm ~$80,000 Following Ransomware Incident
  • DOJ Settles False Claims Act Case with MORSECORP Over Cybersecurity Program
  • Additional Cybersecurity Requirements of NYDFS Part 500 Take Effect Today
Copyright © 2025 · Alston & Bird · All Rights Reserved. Privacy.
This website uses cookies to improve functionality and performance. By continuing to browse this site, you are consenting to the use of cookies on this website. OkCookie policy