Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

Protecting your assets Block and tackle—unclaimed property and cryptocurrency

As promoters of cryptocurrencies and digital-asset exchanges face intense scrutiny from tax, securities and other financial services regulators, they will soon have to contend with unclaimed property (or escheat) laws in the United States. This article explores how these laws could apply to cryptocurrency exchanges, hosted wallets, and other market participants, such as banks,...

DOE Creates Cybersecurity Office

The Department of Energy (DOE) has created a new office for energy security and cybersecurity. The Office of Cybersecurity, Energy Security, and Emergency Response (CESER) will work on energy infrastructure protection and DOE’s role in national security. As Secretary of Energy Rick Perry noted in his statement regarding the creation of the office, “DOE plays a vital role in protecting...

FTC Reviews Security Updates Practices of Eight Mobile Device Manufacturers

The Federal Trade Commission is requiring eight mobile device manufacturers to provide the FTC with information about how they determine to issue security updates to address vulnerabilities in smartphones, tablets, and other mobile devices. The FTC plans to use these filings to study policies, procedures, and practices used to notify customers and determine whether to provide security...

Major Law Firms Hacked

On March 29, 2016, it was reported that hackers infiltrated the systems of major U.S. law firms last summer, including Cravath, Swaine & Moore and Weil, Gotshal & Manges.  Federal law enforcement is investigating the hacks, which likely sought confidential information of publicly-traded companies for the purpose of insider trading. The extent to which the compromised data has...

FTC Orders Data Security Auditors to Provide PCI DSS Assessment Data

On March 7, 2016, the Federal Trade Commission (“FTC”) ordered nine data security auditing companies to provide detailed information within 45 days about how they conduct assessments of companies when measuring their compliance with the Payment Card Industry Data Security Standards (“PCI DSS”).  The FTC announced it is specifically seeking information about “the assessment process...

« Older Entries