Latest Posts
Search for:
Category

Cybersecurity

Category
In Cybersecurity

How Private Public Partnerships Work to Protect Against Cyberattacks (Video)

by 2 Mins Read

On June 14, 2022, Baker McKenzie held its inaugural Cybersecurity Symposium in New York in conjunction with the Association of Corporate Counsel (ACC). It was a thought-provoking day discussing trends and fresh insights from key players in the government and private sector, the ever-changing regulatory landscape, best practices for cyber-readiness and practical advice to manage cyber-threats, data breach response, insurance and related litigation. The following video provides valuable information and key-takeaways in connection with cybersecurity…

In Cybersecurity

Podcast Episode: Strengthening American Cybersecurity Act – What You Need to Know

by and 1 Min Read

In this episode, Brian Hengesbaugh, Global Chair of Data Privacy and Security, is joined by Stephen Reynolds, partner in Chicago, as they discuss the Strengthening American Cybersecurity Act, a law recently signed by President Biden, which requires key businesses to report certain ransomware incidents to the Cybersecurity and Infrastructure Security Agency (CISA). Listen in to hear about: An overview of the new law, including key elements such as mandatory reporting requirements, timelines and which “critical…

In Cybersecurity

Congress Publishes “Game-Changer” Breach Reporting Law, Compliance Requirements Unclear

by , , , , , , , , and 6 Mins Read

After years of legislative debate, Congress passed a new law requiring key businesses to report certain data breaches—or “covered incidents”—to the government. Signed by President Biden on March 15, 2022, the law, part of the Strengthening American Cybersecurity Act, requires companies that operate critical infrastructure—financial institutions, utilities, and other organizations—to share information with the Cybersecurity and Infrastructure Security Agency (CISA) about certain cybersecurity incidents within 72 hours and ransomware payments to cyber criminals within 24…

In Cybersecurity

SEC proposes required cybersecurity disclosures

by 6 Mins Read

In brief On March 9, 2022, the U.S. Securities and Exchange Commission (“SEC”) proposed amendments to its rules on disclosures regarding cybersecurity risk management, strategy, governance, and incident reporting by public companies. These rules are intended to enhance and standardize cybersecurity disclosures, and, if adopted in their current form, would require public companies to disclose cybersecurity-related policies, procedures and all material cybersecurity incidents. Key takeaways On March 9, 2022, the SEC proposed new disclosure requirements…

In Cybersecurity

Metaverse Creators: Beware these Potential Legal Pitfalls

by 6 Mins Read

Whether you are creating new virtual worlds, realities or universes, the digital assets that populate them, or the infrastructure that enable individuals to interact and transact in them, there are numerous legal issues that you may have to navigate. Here are four potential pitfalls that creators of and in the metaverse should avoid. Foregoing Legally Enforceable Contracts. Relying on smart contracts, dapps and other programs exclusively expressed in code to govern transactions between parties can…

In Cybersecurity

SEC Proposes Broad New Cybersecurity Risk Management Rules for Investment Advisers and Funds

by , , , and 8 Mins Read

Commission Seeks Public Comment on Wide Range of Issues in Proposal On February 9, 2022, the Securities and Exchange Commission (SEC or Commission) voted 3-1, with Commissioner Peirce, the lone remaining Republican appointee opposed, to propose new rules under the Investment Advisers Act of 1940 (Advisers Act) and the Investment Company Act of 1940 (Investment Company Act) related to cybersecurity risk management, reporting of breach events, and recordkeeping for registered investment advisers and investment funds.1 If…

In Cybersecurity

Myanmar: The introduction of requirements for digital platform service providers

by and 4 Mins Read

The revised draft Cyber Security Law released by the Ministry of Transport and Communications (MOTC) on 13 January 2022 (“Draft Law 2.0”) sets out certain requirements on a digital platform service provider (DPSP). Failure to comply with the requirements could result in a fine, suspension of the relevant digital platform service (DPS) or revocation of any existing license held by the DPSP. Additionally, the MOTC may act in the public interest and shut down any…

In Cybersecurity

What You Don’t Have Can’t Hurt You – Reducing Cyber Risk Through Proper Data Management

by and 9 Mins Read

As organizations continue to create more data and the threat of cyber risk continues to grow and evolve, businesses are trying to keep up with advancing technologies, find new ways to prepare for cyber-attacks, and mitigate the associated risks. While some of these actions typically occur in response to an attack (e.g. fixing exploited flaws and vulnerabilities, and upgrading technology to better monitor future threats), proper data management is critical to reducing the risks to…

Load More