Posts by Hunton Andrews Kurth

Financial Services & Cybersecurity Regulations: New York Making Changes?

Credit: Getty Images

CISOs and boards at large financial services firms in New York may face new cybersecurity requirements. What MSSPs need to know.

Medical Device Cybersecurity: FDA Seeks Industry Feedback

Credit: Getty Images

Industry stakeholders have until July 7, 2022 to comment on an FDA document: “Cybersecurity in Medical Devices: Quality System Considerations and Content of Premarket Submissions.”

Enhanced EU-U.S. Privacy Shield: Signs of Progress?

Credit: Getty Images

Discussions on a potential enhanced EU-U.S. Privacy Shield framework began in August 2020. Here’s what may be next.

Railroad Cybersecurity: TSA Directives Explained

TSA security directives, influenced by the CISA, require various railroads to strengthen cybersecurity posture & practices. Here’s how.

Cyber Incident Reporting Rules for Banks: Latest U.S. Federal Regulator Guidance

New cyber incident reporting requirements for U.S. banks and service providers will go into effect in April 2022. Here are the details.

DOJ Vows to Prosecute Cybersecurity Fraud By MSPs, MSSPs and Government Contractors

MSPs & MSSPs that knowingly provide deficient cybersecurity products, services or monitoring capabilities could face prosecution, DOJ vows.

DHS Cybersecurity Guidance for Critical Infrastructure Firms: Key Details

DHS, CISA & NIST identify nine control system cybersecurity performance goals for critical infrastructure involving energy, communications, transportation & water.

U.S. Warns: Ransomware Payments May Violate Sanctions

Making ransomware payments may violate some sanctions, and could expose payers to civil liability, U.S. Department of the Treasury warns.

Data Breach Forensic Investigation Report Is Not Privileged Information, Court Rules

court legal justice vertical market lawsuit judge ruling

Rutter’s data breach incident report & related communications are not protected by attorney-client privilege, court rules.

Will U.S. Launch Data Protection Agency?

Proposed U.S. legislation would create the Data Protection Agency, to “regulate high-risk data practices and the collection, processing, and sharing of personal data.”