Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

Amendment to Criminal Procedure Rule 41 Impacts Data Privacy in U.S. and Abroad

On December 1, 2016, amended Rule 41 of the Federal Rules of Criminal Procedure (FRCP) went into effect, thus expanding federal law enforcement’s power to search and seize electronic data. The new rule will allow law enforcement to seek a warrant from a “magistrate judge with authority in any district where activities related to a crime may have occurred” and use that warrant to...

Major Law Firms Hacked

On March 29, 2016, it was reported that hackers infiltrated the systems of major U.S. law firms last summer, including Cravath, Swaine & Moore and Weil, Gotshal & Manges.  Federal law enforcement is investigating the hacks, which likely sought confidential information of publicly-traded companies for the purpose of insider trading. The extent to which the compromised data has...

Iranians Hackers Targeted Control of New York Dam

The seven Iranian hackers that were indicted for conducting distributed denial of service attacks on banks also were charged with illegally accessing the supervisory control and data acquisition, or “SCADA,” system at a dam in New York State. This is reportedly the first time a breach in a U.S. computer system that controls critical infrastructure has been linked by the FBI to a hacker...

Data Sentinel: The Evolving Role of the Attorney as Protector of Company Data

Data. It is one of your organization’s greatest assets, and a necessary part of doing business. But in today’s financial services environment, it is also a source of one of your organization’s greatest risks. In their article for FinTech Law Report, Sutherland attorneys Michael Steinig and Mary Jane Wilson-Bilik describe the attorney’s evolving role in protecting company data, and...

Pros and Cons of the Payment Card Industry Data Security Standard

The Payment Card Industry Data Security Standard (the PCI DSS) establishes the self-described minimum data protection measures required of all entities involved in payment card transactions. The PCI DSS consists of 12 basic requirements, along with testing procedures and guidance designed to assist entities in meeting each requirement. The PCI DSS itself is not a law or regulation, and...

« Older Entries