Cybersecurity

A New U.S. Cyber Strategy: President Trump’s Cyber Strategy for America

March 25, 2026 By Hanna Hewitt and Kim Peretti

A newly released U.S. government cyber strategy (available here) outlines a more assertive and coordinated national posture toward cybersecurity. The strategy acknowledges that cyberspace is central to economic security, national defense, and everyday life. In doing so, it warns that cyber threats now affect everything from critical infrastructure to small businesses and individuals. These cyber […]

Threat Actors Exploit Google’s Gemini to Accelerate Cyberattacks

March 3, 2026 By Seol Namgoong and Kim Peretti

Google Threat Intelligence Group (GTIG) recently reported that cybercriminals—in particular, state-sponsored threat actors from North Korea, Iran, China, and Russia—are misusing Gemini, Google’s large language model (LLM), to support all stages of their attack lifecycle. Specifically, GTIG observed threat actors using Gemini to code and script tasks, accelerate reconnaissance, research publicly known vulnerabilities, and enable […]

CISA Revives CIRCIA Rulemaking

March 2, 2026 By Kim Peretti, Lance Taubin and Scott Hilsen

Almost two years after seeking stakeholder input about a final rule under the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA), the Cybersecurity and Infrastructure Security Agency (CISA) announced that it will hold virtual town hall meetings for certain industry sectors in March and April 2026 to solicit additional input on the Notice […]

New Jersey Expands HIPAA-Based Exemptions Under Its Comprehensive Privacy Law

February 16, 2026 By Jennifer Everett, Dorian Simmons and Sara Pullen

On January 20, 2026, the New Jersey Governor signed Assembly Bill A5017 (“Amendment”), amending the New Jersey Data Protection Act (“NJDPA”). The Amendment exempts data that is not protected health information (“non-PHI”) from the NJDPA when it is handled by covered entities or business associates in accordance with the privacy and security requirements of the […]

FBI Launches Operation Winter SHIELD in Effort to Advance Cyber Resilience Across Critical Sectors

February 4, 2026 By Kim Peretti, Lance Taubin and Andrew Rice

On January 28, 2026, the Federal Bureau of Investigation (FBI) announced the launch of Operation Winter SHIELD, a coordinated initiative designed to promote adoption of core defensive measures that are shown to mitigate common intrusion vectors. Operation Winter SHIELD identifies ten priority actions the FBI views as important in improving organizational cyber resilience. The FBI […]