Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

DOE Creates Cybersecurity Office

The Department of Energy (DOE) has created a new office for energy security and cybersecurity. The Office of Cybersecurity, Energy Security, and Emergency Response (CESER) will work on energy infrastructure protection and DOE’s role in national security. As Secretary of Energy Rick Perry noted in his statement regarding the creation of the office, “DOE plays a vital role in protecting...

FTC Reviews Security Updates Practices of Eight Mobile Device Manufacturers

The Federal Trade Commission is requiring eight mobile device manufacturers to provide the FTC with information about how they determine to issue security updates to address vulnerabilities in smartphones, tablets, and other mobile devices. The FTC plans to use these filings to study policies, procedures, and practices used to notify customers and determine whether to provide security...

Major Law Firms Hacked

On March 29, 2016, it was reported that hackers infiltrated the systems of major U.S. law firms last summer, including Cravath, Swaine & Moore and Weil, Gotshal & Manges.  Federal law enforcement is investigating the hacks, which likely sought confidential information of publicly-traded companies for the purpose of insider trading. The extent to which the compromised data has...

FTC Orders Data Security Auditors to Provide PCI DSS Assessment Data

On March 7, 2016, the Federal Trade Commission (“FTC”) ordered nine data security auditing companies to provide detailed information within 45 days about how they conduct assessments of companies when measuring their compliance with the Payment Card Industry Data Security Standards (“PCI DSS”).  The FTC announced it is specifically seeking information about “the assessment process...

EU-U.S. Privacy Shield – Full Text Released

On February 29, 2016, the European Commission released the text of the EU-U.S. Privacy Shield. The text reveals the details of a new framework that will place stronger obligations on U.S. companies to protect the personal data of EU citizens. It will also involve heightened compliance requirements and authorizes enforcement measures by the U.S. Department of Commerce (Commerce) and the...

« Older Entries Next Entries »