All nonessential services are closed and gatherings over 10 are banned as Massachusetts residents are told to stay at home.
Gov. Baker orders all businesses other than “COVID-19 Essential Services” to close until April 7,...more
New York orders extraordinary measures requiring financial institutions to meet financial needs of and ameliorate the challenges being faced by customers affected by COVID-19.
- New York State has implemented...more
The Coronavirus response is testing the limits of overlapping jurisdiction in the public health arena.
Amid the COVID-19 pandemic, state and local governments with sometimes overlapping jurisdiction are overlaying a quilt of...more
What does it mean for New York State to be on PAUSE?
New York State’s Governor Cuomo has implemented extraordinary measures to prevent the spread of COVID-19, closing all nonessential businesses effective Sunday, March 22,...more
Ten key issues property owners and landlords need to consider as they plan to confront the pandemic.
In a rapidly evolving situation, business plans need to anticipate risks and possible responses....more
3/13/2020
/ Commercial Tenants ,
Coronavirus/COVID-19 ,
Crisis Management ,
Emergency Management Plans ,
Hospitality Industry ,
Housing Market ,
Infectious Diseases ,
Landlords ,
Leases ,
Public Health ,
Workplace Safety
Practical steps to address cybersecurity threats—precautions to prepare for the possible system impacts from COVID-19.
Organizations preparing for COVID-19 are testing and implementing business continuity plans to address...more
3/10/2020
/ Business Continuity Plans ,
Centers for Disease Control and Prevention (CDC) ,
Coronavirus/COVID-19 ,
Cybersecurity ,
Data Protection ,
Infectious Diseases ,
Phishing Scams ,
Popular ,
Public Health ,
Remote Working ,
Risk Management ,
Telecommuting
Practical steps to address cybersecurity threats—what you should do when heightened tension in the Middle East or other events increase the threat of cybersecurity incidents.
- When news events or business initiatives turn...more
1/24/2020
/ Best Practices ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Hackers ,
Information Technology ,
Policies and Procedures ,
Popular ,
Risk Mitigation ,
SHIELD Act
New cybersecurity and data privacy laws will impose substantial new obligations on businesses that collect information about residents of those states.
Regardless of their location or size, nonprofit organizations that...more
New law in New York State extends requirements on companies doing business with New York residents to have cybersecurity programs and expands New York’s breach notification requirements.
New law extends the reach of New...more
Financial institutions regulated by the New York Department of Financial Services (DFS)—referred to in this post as “Covered Entities”—should by now be well familiar with the department’s sweeping cybersecurity regulation, 23...more
The 2018 Midterm Election played out as most poll forecasters speculated. Although several races have yet to be decided, Republicans have retained control of the Senate, but lost at least 29 seats, allowing the Democrats to...more
11/8/2018
/ Corporate Counsel ,
Critical Infrastructure Sectors ,
Cross-Border ,
Cybersecurity ,
Department of Homeland Security (DHS) ,
Department of Transportation (DOT) ,
Deregulation ,
Energy Sector ,
Environmental Policies ,
Financial Services Industry ,
Food and Drug Administration (FDA) ,
Healthcare ,
Legislative Agendas ,
Popular ,
State and Local Government ,
Tax Reform ,
Trade Relations ,
Trump Administration
The DoD clarifies its expectation for full compliance to protect Controlled Unclassified Information (CUI) residing on Contractor Systems from cyber incidents.
A defense contractor’s updated and current System Security...more
12/21/2017
/ Cloud Computing ,
Controlled Unclassified Information (CUI) ,
Cyber Threats ,
Cybersecurity ,
Data Protection ,
Data Security ,
Defense Contracts ,
Defense Sector ,
Department of Defense (DOD) ,
DFARS ,
Federal Contractors ,
NIST ,
Reporting Requirements
Takeaways
- Companies that suffer cyberattacks can expect not sympathy but scrutiny from legal authorities.
- D&O insurance can cover not only litigation but also investigation costs.
- Strategic negotiation of...more
9/22/2017
/ Attorney General ,
Civil Investigation Demand ,
Cyber Attacks ,
Cyber Insurance ,
Cybersecurity ,
D&O Insurance ,
Data Breach ,
Data Privacy ,
Derivative Suit ,
Errors and Omissions Policy ,
Government Investigations ,
Internal Investigations ,
Legal Costs ,
Personally Identifiable Information ,
Popular ,
Risk Management ,
Risk Mitigation ,
Shareholder Litigation ,
Subpoenas ,
Unfair or Deceptive Trade Practices
On May 11th, in the wake of a series of wide-ranging cyber breaches and attacks plaguing public and private sectors alike, President Trump signed a long-awaited Executive Order on Strengthening the Cybersecurity of Federal...more
6/2/2017
/ Critical Infrastructure Sectors ,
Cybersecurity Framework ,
Data Protection ,
Executive Orders ,
Hackers ,
Information Technology ,
National Security ,
NIST ,
Popular ,
Risk Management ,
Trump Administration
In a shock to investors and political analysts around the world, Donald J. Trump won the 2016 Presidential election, putting the Republican Party in charge of the White House and Congress for the first time in a decade. Even...more
Are criminal cyberattacks increasing in sophistication and frequency? Yes.
Is every company, in every industry, that collects or stores sensitive customer, employee, or business data vulnerable to cyberattacks?...more
Retirement plan sponsors face ever-evolving cyber-related threats to plan assets and participant personal information. To combat such threats, plan sponsors should proactively assess the third-party service providers’ ability...more
On January 22, 2016, the Food and Drug Administration (FDA) issued draft guidance titled “Postmarket Management of Cybersecurity in Medical Devices,” setting forth proposed recommendations for the medical device industry as...more
Commodity Futures Trading Commission (CFTC) Chairman Timothy Massad has recently stated that the CFTC may soon issue principles based standards that would require certain CFTC-regulated entities to conduct penetration,...more
On Tuesday, October 27, the U.S. Senate approved legislation, strongly supported by business groups, that would facilitate information sharing between government and industry and provide liability protection to companies that...more
Given the range of threats and the catastrophic impact an attack could have on an airline, strategizing to reduce the risk of breaches and implementing plans to deal with them once they occur should be prioritized at board...more
On May 20, 2015, the Commerce Department Bureau of Industry and Security (BIS) proposed to establish controls on the export of cybersecurity items. These items would be classified under new Export Control Classification...more
FireEye’s MVX and DTI Technologies become the first cybersecurity products to earn certification as “Qualified Anti-Terrorism Technologies.”
The Department of Homeland Security (DHS) crossed an important barrier in...more
On April 1, 2015, President Obama issued a groundbreaking Executive Order (E.O.) enabling the United States to sanction persons that have (1) participated in malicious cyber-enabled activities constituting a “significant...more
Innovation is prized in the growing space of the Internet of Things (IoT). But an innovative product design is not enough, and potential pitfalls abound. As demonstrated in a report published by the Federal Trade Commission...more