Call 855-808-4530 or email [email protected] to receive your discount on a new subscription.
On Feb. 21, 2018, the Securities and Exchange Commission (SEC) voted unanimously to approve a statement and interpretive guidance to assist the public in preparing disclosures about cybersecurity risks and incidents. The SEC’s February 2018 guidance expands upon previous guidance provided in October of 2011 by the SEC’s Division of Corporate Finance, which addressed the Division’s views regarding disclosure obligations relating to cyber risks and incidents.
*May exclude premium content
By Jeff Pade and Lindsey Dieselman
Two recent Chinese laws — the Data Security Law (DSL) and the Personal Information Protection Law (PIPL) — include provisions aimed at restricting the cross-border transfer of China-based data foreign enforcement and judicial authorities. U.S. courts have not yet addressed whether these data protection and privacy laws could bar the production of documents in civil contexts involving governmental litigants or in criminal proceedings.
By Brian P. Piatek
Truly malicious internal threats can often be treated much like external threats using the tools and backups already in place. But how does a firm proactively identify the softer threats — which may be just as dangerous as the malicious threats and can cripple a firm just as effectively?
By Brian Schmitt and Abeer Abu Judeh
Mitigating Its Risks and the Call for Standardization of Software Development Security Protocols
This article details the anatomy of a supply chain cyberattack, explores the existing state of supply chain protective contractual terms, and proposes actionable steps with a collective approach to guide legal professionals through their precarious endeavors.
By Emil Sayegh
When cyber defenses work, there is a human tendency to become complacent. If you fall into this perception trap, you will quickly find yourself in survival mode — scrambling to restore and recover, and in a position where the best explanation was that the attack was somehow “unexpected.” The global cyberthreat is also still very real.