Alston & Bird Privacy, Cyber & Data Strategy Blog

New York and Illinois Regulators Recommend Third Party Cybersecurity Review For Specific Vulnerabilities

This month, the Illinois Department of Insurance issued guidance to insurers recommending assessments in response to a Microsoft Exchange vulnerability, detailed in the guidance. In the Bulletin dated May 5, the Department encourages regulated … [Read more] about New York and Illinois Regulators Recommend Third Party Cybersecurity Review For Specific Vulnerabilities

In a lengthy Executive Order issued on May 12, 2021 (the “Order”), the Biden Administration has taken steps “to make bold changes and significant investments” in both public and private sector cybersecurity “in order to defend the vital institutions … [Read more] about Executive Order Details Cybersecurity Changes For Public And Private Sector

In November, the European Data Protection Board (EDPB) issued draft guidance regarding transfers of personal data from the European Union. That guidance has prompted nearly 200 comments from companies, trade groups, and interested observers. Senior … [Read more] about Swire Report Addresses EU Data Localization Comments, Portuguese Order Restricting U.S. Data Flow

April 29, 2021 By Kate Hanniford

Following the SolarWinds cyber espionage attack (the “Attack”) and the resulting focus on supply chain risk, the New York Department of Financial Services (NYDFS) has issued a report detailing the impact on and responses by its regulated covered … [Read more] about NYDFS Issues Report on the SolarWinds Attack and Covered Entities’ Responses

April 28, 2021 By Alysa Austin

The FBI’s Internet Crime Complaint Center (“IC3”) recently released its annual report, the 2020 Internet Crime Report (“Report”), which gathers statistics from nearly 800,000 complaints of suspected cybercrimes that the department received in 2020. … [Read more] about FBI Releases IC3 2020 Internet Crime Report Showing Record Increase in Cybercrime