After a long silence since guidance was last issued a year ago, there’s now widespread expectation that the Securities and Exchange Commission will get much more specific this year about new cybersecurity disclosures for public companies. Recent actions also signal the commission is paying close attention not just to disclosures, but to weaknesses that create cybersecurity risks at companies.
read more 
In late 2018 the U.S. District Court of New Jersey indicted two Iranian men for allegedly running a hacking scheme that hit local and state governments as well as transportation agencies and hospitals across the U.S. The scheme involved infecting corporate networks with SamSam malware, which encrypted data on computers in the networks, then blackmailing the institutions by requiring a ransom payment in return for the decryption keys.
read more Australia has recently taken significant action in the realm of data security that will potentially have global impact. In December 2018, the Australian Competition and Consumer Commission (“ACCC”) released recommendations on ways big technology companies can improve data security.
read more Privacy was a hot topic throughout the U.S. in 2018. California lawmakers passed some groundbreaking legislation regarding consumer privacy and the Internet of Things (“IoT”). Several other states also began to address some important data privacy concerns. Additionally, lobbying for a federal privacy law increased. Below are some key privacy developments from 2018.
read more