National Security & Digital Crimes

Article: Executive Order to Limit Sales of Americans’ Sensitive Data to Adversarial Foreign Governments

February 29, 2024 By Santi Villar and Daniel Felz

Peter Swire, Senior Counsel at Alston & Bird, has co-authored a detailed article in Lawfare, “Limiting Data Broker Sales in the Name of U.S. National Security: Questions on Substance and Messaging,” analyzing the Biden Administration’s new Executive Order issued yesterday. Swire’s article summarizes key aspects and impacts of the Executive Order, which is intended to […]

FBI and CISA Warn of Chinese Cyberattacks on U.S. Critical Infrastructure

February 21, 2024 By Seol Namgoong, Kim Peretti and Lance Taubin

Recently, there has been a surge in alerts and warnings concerning cyberattacks by People’s Republic of China (PRC) state-sponsored threat actors on U.S. critical infrastructure. On February 7, 2024, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA), along with the National Security Agency and their counterparts in Australia, Canada, […]

Declassified Intelligence Community Letters Highlight Importance of Monitoring Outbound Data Flows

February 16, 2024 By Santi Villar and David Keating

On January 25, 2024, Senator Ron Wyden (D-OR) released documents that confirm U.S. intelligence agencies are purchasing location and other sensitive personal information from data brokers without the consent of the data subjects. The FTC has recently gone after data brokers who collect and sell the sensitive location data of consumers without their express consent, […]

National Cyber Security Centre Forecasts Upcoming Cyber Threats with AI Use for Attacks

January 26, 2024 By Kim Peretti and Alysa Austin

On January 24, 2024, the U.K.’s National Cyber Security Centre (NCSC) released a new report, The near-term impact of AI on the cyber threat, detailing how Artificial Intelligence (AI) will impact the effectiveness of cyber operations for 2025 and beyond. According to the report, threat actors are already using AI in cyber attacks and the […]

NYDFS Releases Industry Letter on the Use of Self-Service Password Reset Feature

January 23, 2024 By Kim Peretti, Kate Hanniford, Lance Taubin, Ashley Miller and Colton Jackson

On January 12, 2024, the New York State Department of Financial Services (“NYDFS”) released a new Industry Letter on the use of self-service password reset (“SSPR”) services, which enable users to reset their own password without the assistance of help desk or IT professionals. The Industry Letter discusses the risks associated with the use of […]