Martin McSherry

Martin McSherry

Kramer Levin Naftalis & Frankel LLP

Contact
View Bio
RSS

Latest Posts › Cybersecurity

Share:

Corporate Governance: 2023 Midyear Review

The public and private focus on corporate governance continued apace in the first half of 2023. In recent months, there were notable developments in jurisprudence potentially impacting corporate diversity initiatives and in...more

7/12/2023  /  10b5-1 Plans , Civil Rights Act , Corporate Governance , Cybersecurity , Data Breach , Department of Justice (DOJ) , Export Administration Regulations (EAR) , Fourteenth Amendment , Popular , Sanction Violations , Section 11 , Securities Act of 1933 , Securities and Exchange Commission (SEC) , Title VI , Wells Fargo

SEC Issues $3 Million Penalty Against Blackbaud for Misleading Cybersecurity Incident Disclosures

On March 9, software company Blackbaud agreed to pay $3 million to the SEC as a result of alleged misleading disclosures arising out of a 2020 data breach that involved customer bank account information and Social Security...more

3/17/2023  /  Corporate Governance , Cybersecurity , Disclosure Requirements , Popular , Publicly-Traded Companies , Securities and Exchange Commission (SEC) , Securities Regulation

Cybersecurity in the Boardroom: ‘Caremark’ Liability for Boards’ Failure to Oversee Cybersecurity

In an era of increasing cyberattacks by varying threat actors, the board's oversight of cybersecurity risks remains a key responsibility. In two recent cases, the Delaware Court of Chancery (Chancery Court) dismissed Caremark...more

3/14/2023  /  Board of Directors , Caremark claim , Cybersecurity , Derivative Suit , Popular , Shareholder Litigation

Cybersecurity, Privacy and Data Protection 2022 Year in Review

The year 2022 saw a groundswell of interest in privacy rights and related legislation. Five states enacted new laws or regulations aimed at protecting a general right to privacy, while the U.S. government came closer than...more

1/24/2023  /  Corporate Counsel , Cybersecurity , Data Privacy , Data Protection , Data Security , Federal Trade Commission (FTC) , FinCEN , NYDFS , Popular , Risk Management , Russia , Securities and Exchange Commission (SEC)

New York State Department of Financial Services To Amend Cybersecurity Regulations for Financial Services Companies

The New York State Department of Financial Services (NYDFS) has published proposed amendments to its Cybersecurity Requirements for Financial Services Companies (amendments). The amendments to the agency’s cybersecurity...more

11/17/2022  /  Cybersecurity , Financial Institutions , Financial Services Industry , NYDFS , Proposed Amendments

Proposed FTC Order Targets Drizly and Its CEO for Allegedly Lax Information Security Standards Following Data Breach

On Oct. 24, the Federal Trade Commission (FTC) issued a proposed decision and order against Drizly LLC and its CEO regarding allegations that the company’s security failures led to a data breach exposing the personal...more

11/10/2022  /  Consent Order , Cybersecurity , Data Breach , Data Privacy , Data Protection , Data Security , Federal Trade Commission (FTC) , FTC Act , Personal Information

Corporate Governance: 2022 Midyear Review

The first half of 2022 illuminated important trends in the corporate governance space. In recent months, there were notable developments in the enforcement of economic sanctions and export control measures, and the oversight...more

7/5/2022  /  California , Corporate Counsel , Corporate Governance , Cryptocurrency , Cybersecurity , Department of Justice (DOJ) , Environmental Social & Governance (ESG) , Equal Protection , Export Controls , Popular , Proxy Season , Securities and Exchange Commission (SEC) , State Constitutions , White Collar Crimes

SEC Proposes Comprehensive Cybersecurity Reporting Rules for Public Companies

On March 9, the SEC, by a 3-1 vote, proposed new rules in its most far-reaching effort to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance and incident reporting by public...more

3/18/2022  /  Comment Period , Cyber Incident Reporting , Cybersecurity , Disclosure Requirements , Proposed Rules , Public Comment , Publicly-Traded Companies , Securities and Exchange Commission (SEC)

2022 Omnibus Spending Package Includes New Cybersecurity Incident Reporting Requirements for Critical Infrastructure Companies:...

On March 15, 2022, President Joe Biden signed the Cyber Incident Reporting for Critical Infrastructure Act (the Act) into law as part of the $1.5 trillion fiscal 2022 omnibus spending package. The Act will create a mandatory...more

3/18/2022  /  Biden Administration , Cyber Attacks , Cyber Incident Reporting , Cybersecurity , Data Breach , Data Protection , Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) , Popular , Ransomware

Federal Bank Regulators Approve New Cybersecurity Incident Notification Rule

On Nov. 18, 2021, federal bank regulatory agencies approved a final rule requiring banking organizations to notify regulators of “any significant computer-security incident” as soon as possible and no later than 36 hours...more

11/30/2021  /  Banking Sector , Cyber Incident Reporting , Cybersecurity , FDIC , Financial Institutions , Financial Regulatory Agencies , Financial Regulatory Reform , Financial Services Industry , Popular

SEC Continues Focus on Cybersecurity in Three New Actions Targeting Investment Advisers and Broker Dealers

Demonstrating its continued focus on cybersecurity enforcement, the Securities and Exchange Commission (SEC) announced three new actions on Aug. 30 charging eight firms with maintaining deficient cybersecurity policies and...more

9/13/2021  /  Broker-Dealer , Cybersecurity , Enforcement Actions , Investment Adviser , Personally Identifiable Information , Popular , Safeguards Rule , Securities and Exchange Commission (SEC)

The SEC’s Continued Focus on Cybersecurity Enforcement

On June 14, the Securities and Exchange Commission (SEC) announced a $490,000 settlement with the real estate services provider First American Financial Corporation (First American) for violations of disclosure controls and...more

7/8/2021  /  Cybersecurity , Data Breach , Disclosure Requirements , Enforcement Actions , Insider Trading , Popular , Publicly-Traded Companies , Securities and Exchange Commission (SEC)

European Commission Adopts New Standard Contractual Clauses for Data Transfers

On June 4, the European Commission (EC) adopted two sets of standard contractual clauses (SCCs) for use between controllers and processers in the European Economic Area (EEA) and for the transfer of data between EEA and...more

6/17/2021  /  Cybersecurity , Data Controller , Data Processors , Data Protection , EU , European Economic Area (EEA) , General Data Protection Regulation (GDPR) , International Data Transfers , Personal Data , Personally Identifiable Information , Schrems I & Schrems II , Standard Contractual Clauses
13 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide