Cybersecurity & Privacy

  • May 16, 2024

    Clean Energy CEO Gets 6 Years For Forgeries Netting $1.1M

    The CEO of a Pennsylvania clean energy company was sentenced to six years in federal prison for defrauding investors out of $1.1 million and falsifying documents to cover his tracks, federal prosecutors announced Thursday.

  • May 16, 2024

    Prosecutors Say Fake Fortune 500 Workers Funded N. Korea

    The Biden administration alleged that North Korea may have raised $6.8 million to develop nuclear weapons by installing remote information technology workers at Fortune 500 businesses, announcing charges Thursday against two individuals accused of helping agents pose as U.S. employees.

  • May 16, 2024

    SEC Adopts Rules For Uncovering, Reporting Data Breaches

    The U.S. Securities and Exchange Commission announced the adoption of cybersecurity rules Thursday that will require investment advisers and broker-dealers to put procedures in place for detecting data breaches and for notifying customers when their personal information may have been compromised.

  • May 16, 2024

    AI Study Tool Student Creator Sues Emory Over Suspension

    A student who received a $10,000 prize last year from Emory University for helping to create an artificially intelligent study tool is now suing the university for suspending him on the basis that using the tool could be a violation of the academic honor code.

  • May 16, 2024

    Fired MSU Coach Freed From Suit Over Abuse Accuser's Texts

    A Michigan judge on Thursday tossed a privacy lawsuit against former Michigan State University football coach Mel Tucker over the sharing of text messages from an anti-sexual violence activist who has accused him of sexual harassment.

  • May 16, 2024

    Burger King Franchisee Seeks BIPA Coverage Quick Win

    A Burger King franchisee asked an Illinois federal court to rule that due to precedent and policy ambiguities, its umbrella insurer must defend it in a class action claiming it violated Illinois' Biometric Information Privacy Act by nonconsensually collecting fingerprint data.

  • May 16, 2024

    DC Judge Mulls Dominion's DQ Bid For Pro-Trump Mich. Atty

    Lawyers for Dominion Voting Systems pursuing defamation claims against former CEO Patrick Byrne fought Thursday to disqualify the Michigan attorney representing him, insisting to a D.C. federal judge that disqualification is the most appropriate remedy for the lawyer's leak of Dominion's confidential discovery documents.

  • May 16, 2024

    Meta Hit With EU Probe Over Child Safety Concerns

    Meta was hit on Thursday with an investigation by the European Commission over concerns its Facebook and Instagram services could promote addictions in children.

  • May 16, 2024

    US Must Produce Emails Between IRS Managers, Docs Leaker

    The government must produce emails between Internal Revenue Service managers and a former contractor who leaked thousands of wealthy people's tax returns, a Florida federal judge has ordered, saying the materials are relevant to a billionaire's case accusing the agency of responsibility for the leak.

  • May 15, 2024

    Arizona AG Lobs Suits Over 'Deceptive' Amazon Practices

    Arizona Attorney General Kris Mayes on Wednesday filed a pair of suits claiming that Amazon Prime's cancellation process and other features are deceptive, misleading and have led to higher prices for consumers.

  • May 15, 2024

    Blackbaud Dodges Data Breach Victims' Class Cert. Bid

    A South Carolina federal judge has refused to certify several proposed classes consisting of roughly 1.5 billion patients, donors and other individuals whose personal information was allegedly swept up in a 2020 ransomware attack on software provider Blackbaud Inc., finding that the plaintiffs had failed to show that class members could be easily identified. 

  • May 15, 2024

    SolarWinds Says SEC's Cyber Breach Suit Goes Too Far

    SolarWinds Corp. on Wednesday asked a Manhattan federal judge to throw out the U.S. Securities and Exchange Commission's suit accusing the enterprise software company of deceiving investors about its lax cybersecurity, which left it open to a Russian hacking campaign.

  • May 15, 2024

    State Farm Can't Dodge TCPA Suit Over Robocalls

    State Farm must face a proposed class action alleging it violated the Telephone Consumer Protection Act by using a third-party company to make automated telemarketing calls without prior consent, an Illinois federal judge has ruled, saying the suit states a plausible claim of the insurer's vicarious liability for the robocalls.

  • May 15, 2024

    Flexibility In Info Security Policy May Add Compliance Burden

    New federal guidance for contractors handling sensitive, but unclassified information could introduce confusion and compliance burdens if agencies implement security controls without consulting contractors. 

  • May 15, 2024

    UnitedHealth Concealed DOJ Merger Investigation, Suit Says

    UnitedHealth Group has been hit with a proposed shareholder class action alleging that it failed to disclose that the U.S. Department of Justice had reopened an antitrust investigation into the health insurance giant following its acquisition of a healthcare data company, and that top executives had sold more than $120 million of shares knowing about the investigation before a news report revealed it to the public.

  • May 15, 2024

    En Banc 9th Circ. Will Mull Jurisdiction In Shopify Privacy Suit

    The Ninth Circuit agreed to review en banc a panel's decision dismissing a suit alleging payment processing company Shopify collects shoppers' sensitive information without permission, after the plaintiff argued the full court should hear the case to resolve how to assess personal jurisdiction in online misconduct cases.

  • May 15, 2024

    Anti-Trans Groups Fail To Block Wash. Youth Shelter Law

    A federal judge on Wednesday threw out a lawsuit filed by two anti-transgender groups challenging a Washington state law intended to ensure shelter for teens seeking gender-affirming care or reproductive health services, ruling that speculating on possible injury was not enough to clear a standing hurdle.

  • May 15, 2024

    FTC Chair Khan Defends Request For 25% Budget Increase

    Federal Trade Commission Chair Lina M. Khan defended a 25% budget increase request during a House appropriations hearing Wednesday, calling it "healthy" that aggressive Biden administration merger enforcement has made antitrust considerations top of mind for companies mulling transactions.

  • May 15, 2024

    House Panel Advances Tax-Exempt Org Oversight Bills

    The House Ways and Means Committee approved a package of bills Wednesday that would increase scrutiny of foreign donations to tax-exempt organizations, including legislation that would require those organizations to publicly report the donations.

  • May 15, 2024

    FCC Could Require ISP Reports On Internet Routing Security

    The Federal Communications Commission will vote on a plan next month to require the largest broadband providers to file confidential reports on security of the internet's main routing technology, the Border Gateway Protocol.

  • May 15, 2024

    Ex-FTX Exec Seeks Leniency, Saying He Was Kept In The Dark

    A former top FTX official has asked a Manhattan federal judge for a lenient 18-month sentence, saying he was not part of company co-founder Sam Bankman-Fried's inner circle and was as shocked as everyone else to learn that the crypto exchange was operating a fraud that siphoned billions in customer funds.

  • May 15, 2024

    Senators Release 'Road Map' For Crafting Federal AI Policy

    A bipartisan group of senators on Wednesday laid out a "road map" for artificial intelligence policy that calls for increased AI innovation funding, testing of potential harms posed by AI and consideration of the technology's workforce implications.

  • May 15, 2024

    Kirkland Guiding Billionaire McCourt On Bid To Buy TikTok

    Billionaire Frank McCourt, advised by Kirkland & Ellis, says he's building a consortium to purchase TikTok and redesign the platform to eliminate the collection of users' information, putting "people in control of their [own] digital identities and data." 

  • May 15, 2024

    Mortgage Co.'s $2.4M Data Breach Settlement Gets Initial OK

    A Connecticut federal judge gave her initial sign-off to a $2.4 million settlement between mortgage firm Planet Home Lending LLC and a consolidated class of customers whose personal data, including their Social Security numbers, was exposed in a cyberattack.

  • May 14, 2024

    Gunster Data Breach Affected 9K Clients' Data, Suit Says

    A former client of Gunster Yoakley & Stewart PA has filed a proposed class action in Florida federal court, alleging the law firm's weak cybersecurity systems allowed outsiders to access clients' personal and sensitive health information and that the firm waited over a year to inform those affected.

Expert Analysis

  • Opinion

    Cyber Regulators Should Rely On Existing Sources Cautiously

    Author Photo

    New incident reporting rules proposed by the Cybersecurity and Infrastructure Security Agency illustrate how the use of definitions, standards and approaches from existing sources can create a complex patchwork of regulations, demonstrating that it is essential for agencies to be clear about expectations and not create unnecessary confusion, says Megan Brown at Wiley.

  • 4 Ways To Refresh Your Law Firm's Marketing Strategy

    Author Photo

    With many BigLaw firms relying on an increasingly obsolete marketing approach that prioritizes stiff professionalism over authentic connection, adopting a few key communications strategies to better connect with today's clients and prospects can make all the difference, say Eric Pacifici and Kevin Henderson at SMB Law.

  • Tips For Balanced Board Oversight After A Cyberincident

    Author Photo

    The U.S. Securities and Exchange Commission's cybersecurity disclosure rules, as well as recent regulatory enforcement actions bringing board governance under scrutiny, continue to push boards toward active engagement in relation to their cyber-oversight role, despite it being unclear what a board's level of involvement should be, say attorneys at Alston & Bird.

  • What Cos. Are Reporting Under New SEC Cybersecurity Rule

    Author Photo

    Four months after its effective date, 14 companies have made disclosures under the U.S. Securities and Exchange Commission's mandatory cybersecurity incident reporting rule, and some early trends are emerging, including a possible rush to file, say attorneys at Debevoise.

  • Data Protection Steps To Consider After Biden Privacy Order

    Author Photo

    A recent White House executive order casts a spotlight on the criticality of securing sensitive content communications, presenting challenges and necessitating a recalibration of practices, especially for lawyers, says Camilo Artiga-Purcell at Kiteworks.

  • The Future Of BIPA Insurance Litigation After Visual Pak

    Author Photo

    A recent Illinois appellate court decision, National Fire Insurance v. Visual Pak, may have altered the future of insurance litigation under the state's Biometric Information Privacy Act by diametrically opposing a prominent Seventh Circuit ruling that found insurance coverage for violations of the act, say attorneys at Jenner & Block.

  • Consumer Privacy Takeaways From FTC Extraterritorial Action

    Author Photo

    With what appears to be its first privacy-related consent agreement with a non-U.S. business, the Federal Trade Commission establishes that its reach is extraterritorial and that consumer internet browsing data is sensitive data, and there are lessons for any multinational business that handles consumer information, say Olivia Greer and Alexis Bello at Weil.

  • Series

    Whitewater Kayaking Makes Me A Better Lawyer

    Author Photo

    Whether it's seeing clients and their issues from a new perspective, or staying nimble in a moment of intense challenge, the lessons learned from whitewater kayaking transcend the rapids of a river and prepare attorneys for the courtroom and beyond, says Matthew Kent at Alston & Bird.

  • Navigating Kentucky's New Consumer Privacy Law

    Author Photo

    On April 4, Kentucky passed a new law that imposes obligations on affected businesses relating to the collection, use and sale of personal data — and those operating within the state must prepare for a new regulatory landscape governing the handling of consumer data, say Risa Boerner and Martha Vázquez at Fisher Phillips.

  • This Earth Day, Consider How Your Firm Can Go Greener

    Author Photo

    As Earth Day approaches, law firms and attorneys should consider adopting more sustainable practices to reduce their carbon footprint — from minimizing single-use plastics to purchasing carbon offsets for air travel — which ultimately can also reduce costs for clients, say M’Lynn Phillips and Lisa Walters at IMS Legal Strategies.

  • New Proposal Signals Sharper Enforcement Focus At CFIUS

    Author Photo

    Last week's proposed rule aimed at broadening the Committee on Foreign Investment in the United States' enforcement authority over foreign investments and increasing penalties for violations signals that CFIUS intends to continue expanding its aggressive monitoring of national security issues, say attorneys at Kirkland.

  • 4 Ways AI Tools Can Improve Traditional Merger Analyses

    Author Photo

    Government officials at the American Bar Association's annual antitrust spring meeting last week reinforced the view that competition cases will increasingly rely on sophisticated data analysis, so companies will likewise need to use Big Tech quantitative techniques to improve traditional merger analyses, say Patrick Bajari, Gianmarco Calanchi and Tega Akati-Udi at Keystone.

  • What FinCEN Proposed Customer ID Number Change Means

    Author Photo

    The Financial Crimes Enforcement Network's recent request for comment on changing a requirement for banks to collect full Social Security numbers at account sign-up represents an important opportunity for banks to express their preferability, as communicating sensitive information online may carry fraud or cybersecurity risks, say attorneys at Crowell & Moring.

  • How Companies Can Use Big Data As A Strategic Asset

    Author Photo

    Artificial intelligence technology powered by big data has the potential to create radical improvements to business operations, but if big data is improperly protected or monetized, this same information can give competitors similar advantages, or at the very least undermine a company's edge, say Gary Weinstein and Hudson Peters at Faegre Drinker.

  • Cos. Should Mind Website Tech As CIPA Suits Keep Piling Up

    Author Photo

    Businesses should continue evaluating their use of website technologies and other data-gathering software and review the disclosures in their privacy policies, amid an increase so far in 2024 of class actions alleging violations of the California Invasion of Privacy Act's pen register and trap-and-trace provisions, say attorneys at Sheppard Mullin.

Want to publish in Law360?

Submit an idea

Have a news tip?

Contact us here
Can't find the article you're looking for? Click here to search the Cybersecurity & Privacy archive.
Hello! I'm Law360's automated support bot.

How can I help you today?

For example, you can type:
  • I forgot my password
  • I took a free trial but didn't get a verification email
  • How do I sign up for a newsletter?
Ask a question!