Updated in response to an increase in ransomware attacks against critical infrastructure, the revised advisory identifies new trends, typologies and indicators of ransomware payments and ...
The New York DFS issued new guidance regarding a covered entity’s reliance on an affiliate’s cybersecurity program. The guidance explains DFS’s view that, when a covered entity reli...
Personal Information Protection Law of China (PIPL) came into effect today, containing rules comprehensively regulating personal data processing activities across all industries in and ou...
On Thursday, October 28, 2021, Deputy Attorney General Lisa Monaco announced significant changes to the DOJ’s corporate enforcement program during her speech at the ABA’s National Insti...
In a recent speech, PADAG John Carlin previewed DOJ’s refocused corporate enforcement efforts and priorities. He addressed a variety of topics, including an upcoming review and revision...
An enforcement action against an alternative data provider for misrepresenting its practices offers lessons both for trading firms that use alternative data and public companies that sell...
The SEC filed three enforcement actions against investment advisers and broker-dealers for cybersecurity deficiencies after the firms experienced incidents that exposed customer and clien...
The SEC filed an enforcement action against a company for disclosing the risk that it “could” have a data privacy breach when it knew it already had experienced a breach. The action a...
The CFTC and FinCEN recently announced a settlement with BitMEX for $100 million to resolve an enforcement action related to the exchange’s failure to register as a futures commission m...
The SEC continued its recent focus on SPACs by filing charges against both sides of a planned but not yet completed SPAC merger, including charges against the SPAC and its CEO for adoptin...
