As cyber threats have evolved and expanded, cybersecurity has emerged as a threat to organizations across sectors, and there is more urgency than ever for companies to remain vigilant and prepared. Cybersecurity incidents can come with legal implications and lead
Online and On Point
A Resource for Privacy Developments and Cybersecurity Risks in an Era of Evolving Technology
Latest from Online and On Point - Page 4
Don’t Mess with Texas or Its Cybersecurity and Data Privacy Laws
Kayla Tran is a co-author of this post and is a Summer Associate at Bradley.
In recent years, the Lone Star State has been vigilant in enacting cybersecurity and data privacy laws to protect individuals and businesses from the disastrous…
DoDIG Audit of Controlled Unclassified Information (CUI) Program: Findings and Next Steps for Contractors
The Department of Defense Inspector General (DoDIG) recently released its “Audit of the DoD’s Implementation and Oversight of the Controlled Unclassified Information [CUI] Program” (DODIG-2023-078). The audit highlights some of DoD’s challenges in implementing the CUI Program and…
How a Zero-Day Flaw in MOVEit Led to a Global Ransomware Attack
In an era where our lives are ever more intertwined with technology, the security of digital platforms is a matter of national concern. A recent large-scale cyberattack affecting several U.S. federal agencies and numerous other commercial organizations emphasizes the criticality…
U.S. Senate Judiciary Committee Holds Historic Hearing on AI Regulation
On May 16, 2023, the U.S. Senate Judiciary Committee conducted a significant oversight hearing on the regulation of artificial intelligence (AI) technology, specifically focusing on newer models of generative AI that create new content from large datasets. The hearing was…
New Florida Law Will Ban Offshoring of Certain Patient Data
Effective July 1, 2023, a new Florida law will limit certain health care providers from storing patient information offshore. CS/CS/SB 264 (Chapter 2023-33, Laws of Florida), amends the Florida Electronic Health Records Exchange Act to require health care providers who…
Tennessee Passes Comprehensive Data Privacy Law
Tennessee has joined the growing number of states that have enacted comprehensive data privacy laws. On the final day of this year’s legislative session, the Tennessee legislature passed the Tennessee Information Protection Act (TIPA), and Governor Bill Lee signed TIPA…
You Have 72 Hours: NCUA Finalizes New Cybersecurity Incident Reporting Rule for Federally Insured Credit Unions
Federally insured credit unions are now required to report a cyber incident to the National Credit Union Administration (NCUA) Board within 72 hours. This final rule was unanimously approved by the NCUA on February 17, 2023 and will take effect…
Cybersecurity Enforcement Has Increased, and 2023 Will Be Worse!
The government’s announcement of renewed emphasis on cybersecurity enforcement has spawned recent million-dollar enforcement actions. Continued government attention on cybersecurity promises a treacherous enforcement environment in 2023 and beyond.
Several recent government initiatives have focused on cybersecurity enforcement. Towards the…
The Federal Government Focused on Cybersecurity, Among Other Sectors, in Enforcing the False Claims Act in 2022
While the federal government has relied on the False Claims Act (FCA) to combat fraud across a range of sectors since 1986, in 2022, the Department of Justice set its sights on new enforcement priorities, including fraud in the cybersecurity…