• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

Cybersecurity

New York Continues to Focus on Companies’ Data Security Practices

October 6, 2023 By Kim Peretti and Kristen Bartolotta

New York Attorney General Letitia James recently announced two agreements related to data breaches with entities that operate in the education industry. In both instances the entities paid the ransom and received evidence of deletion of the stolen data. Most recently, on October 5, 2023 the Office of the Attorney General (OAG) announced a $49.5 […]

Filed Under: Cybercrime, Cybersecurity, Data Breach, Data Protection, Data Security, Enforcement, Ransomware, Security Breach Tagged With: Cybersecurity, Data Breach Notification, Data Protection, New York Attorney General, Regulatory Enforcement, Settlement

Penn State University Hit With False Claims Act Suit for Alleged Cyber Security Deficiencies

September 25, 2023 By Privacy, Cyber & Data Strategy Team

On September 1, 2023, the U.S. District Court for the Eastern District of Pennsylvania unsealed a qui tam False Claims Act (“FCA”) lawsuit (originally filed on October 5, 2022) alleging Penn State University failed to provide “adequate security” for Covered Defense Information, as contractually required by Defense Federal Acquisition Regulation Supplement (“DFARS”) 252.204-7012. DFARS requires […]

Filed Under: Cybersecurity, Data Security, FCA, National Security, Uncategorized Tagged With: Cybersecurity, Defense Federal Acquisition Regulation Supplement (DFARS), False Claims Act, Litigation

California Proposes Annual Audits to Assess Sufficiency and Compliance of Company Cybersecurity

September 18, 2023 By Kim Peretti and Kristen Bartolotta

In late August 2023, the California Privacy Protection Agency (“CPPA” or “Agency”) released a discussion draft of proposed regulations under California’s data privacy law, the California Consumer Privacy Act (“CCPA”). Importantly, the proposed regulations set forth more detailed obligations for company cybersecurity programs, including routinely assessing and filing audits with the CPPA. Though these draft […]

Filed Under: California, CCPA, CPPA, CPRA, Cyber Risk, Cybersecurity, Data Protection, Data Security, Regulation Tagged With: California Consumer Privacy Act (CCPA), California Privacy Protection Agency (CPPA), California Privacy Rights Act (CPRA), Cybersecurity, Cybersecurity Audit, Data Protection

NIST Cybersecurity Framework 2.0 Released for Public Comment

August 28, 2023 By Dorian Simmons, Alysa Austin and Privacy, Cyber & Data Strategy Team

On August 8, 2023, the National Institute of Standards and Technology (NIST) released the initial draft of its Cybersecurity Framework 2.0 and draft Implementation Examples for public comment. This marks the first significant update to the NIST Cybersecurity Framework (“Framework”) since its initial release in 2014, which is intended to address current and future cybersecurity […]

Filed Under: Cybersecurity, Data Security, FTC, NIST Tagged With: Cybersecurity, Data security, NIST

Chinese Hackers Exploit Gap in Cloud Environment Used by U.S. Government

July 20, 2023 By Kristen Bartolotta and Privacy, Cyber & Data Strategy Team

According to recent reports issued by Microsoft and U.S. government agencies, hackers recently exploited a gap in Microsoft’s cloud environment, enabling the malicious actors to access the email accounts of employees at the United States Commerce and State Departments. Including the U.S. government, around 10 organizations were victimized in the U.S. and about 25 were […]

Filed Under: China, Cyber Espionage, Cybersecurity, Data Security, National Security, Uncategorized Tagged With: China, Cybersecurity, Espionage, Hacking, National Security

  • « Go to Previous Page
  • Page 1
  • Interim pages omitted …
  • Page 6
  • Page 7
  • Page 8
  • Page 9
  • Page 10
  • Interim pages omitted …
  • Page 17
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


RANSOMWARE FUSION CENTER
Click here to request access

THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up

@ALSTONPRIVACY
Click here to follow us on Twitter

Secondary Sidebar

Categories

Recent Posts

  • Rhode Island’s New Cybersecurity Law for Nonbank Financial Institutions
  • DOJ Settles Cyber Qui Tam Action Against Illumina for Allegedly Unsecured Genomic Sequencing Products
  • CISA and FBI Joint Update on Scattered Spider: Evolving Threats and Mitigation Guidance
  • Microsoft Announces Two New On-Premises SharePoint Vulnerabilities
  • CPPA Board Votes to Adopt CCPA Regulations; Open DROP Rules to Public Comment
Copyright © 2025 · Alston & Bird · All Rights Reserved. Privacy.
This website uses cookies to improve functionality and performance. By continuing to browse this site, you are consenting to the use of cookies on this website.