Latest Post

To Disclose or Not to Disclose (and how much) – That is the Question

January 28, 2025

The decision-making process involved in disclosing a cyber incident is a nuanced and delicate dance. Companies need to consider a myriad of factors, including when to disclose and how much detail to disclose to employees, customers, or regulators, such as the Securities and Exchange Commission (“SEC”).

A New York bank was recently forced to pay over $3.5 million to settle allegations that it minimized the extent of a cybersecurity incident in its SEC filings and public notices to customers. According to the SEC, the bank was negligent in making “materially misleading statements” regarding a cybersecurity incident involving the bank’s network between November 22, 2021 and December 25, 2021.…

More Posts

DOJ Updates Guidance on Corporate Compliance Programs

October 14, 2024

Millions of Reasons to be a Whistleblower Means Increased Need for Internal Reporting Incentives

September 12, 2024

Who Determines Materiality of Cybersecurity Incidents in Light of Recent SEC Rule Requiring Disclosure of Cybersecurity Incidents?

June 26, 2024

Navigating AI Risks: A Guide to Enhancing Corporate Compliance Programs

April 17, 2024

Navigating Shifting Legal Landscapes: Implications of Deputy Attorney General Lisa Monaco’s Address to Oxford University on Artificial Intelligence

February 21, 2024

Managing and Reporting Third-Party Cybersecurity Incidents Under the New SEC Cyber Risk Regulations

February 15, 2024

Recent Discover Lawsuits Provide Compliance Lessons

November 8, 2023

Supreme Court Restricts the Scope of the Aggravated Identity Fraud Statute

June 29, 2023

Sixth Circuit Limits Anti-Kickback Claims Brought Under False Claims Act

April 3, 2023

Connect:

Subscribe:

Blogs

Firm/Org

Squire Patton Boggs