Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

Cybersecurity and Data Privacy review and update: Looking back on 2018 and planning ahead for 2019

From the implementation of the GDPR to the passage of the CCPA, the year 2018 proved to be a monumental one for cybersecurity and data privacy. Regulators from around the world responded to devastating, large-scale cyber-attacks, and a desire for their citizens to have more control over their data, by passing a wide range of regulations aimed at protecting consumer information. These...

Poland implements comprehensive cybersecurity legislation

Poland is the latest nation to pass extensive cybersecurity legislation that will impact many companies that do business in Poland. The legislation, called the Act on the National Cybersecurity System (ANCS), pertains to critical infrastructure companies and providers of digital services. Any organization that operates within Poland and is designated as one of these types of companies...

DHS Announces Public Hearings and Requests Comments on Handling of Critical Infrastructure Information

  The Department of Homeland Security (“DHS”) announced that it will hold a series of public hearings and request comments on revising its regulations regarding the handling of protected critical-infrastructure information (“PCII”) in an automated and electronic format.  According to the notice published in the Federal Register, DHS is requesting comments on revising its rules...

Iranians Hackers Targeted Control of New York Dam

The seven Iranian hackers that were indicted for conducting distributed denial of service attacks on banks also were charged with illegally accessing the supervisory control and data acquisition, or “SCADA,” system at a dam in New York State. This is reportedly the first time a breach in a U.S. computer system that controls critical infrastructure has been linked by the FBI to a hacker...

NIST RFI on Cybersecurity Framework

The National Institute of Standards and Technology (NIST) is seeking information on how it might update and improve its February 2014 ‘‘Framework for Improving Critical Infrastructure Cybersecurity.” The Framework consists of voluntary standards, guidelines, and practices intended to help organizations manage cybersecurity risks. In a Request for Information (RFI) issued on December...

« Older Entries