Some public companies are still trying to figure out how to comply with new rules from the US Securities and Exchange Commission requiring speedy disclosure of significant cyberattacks. Those rules, which kicked in Monday, require companies to report cyber incidents …
A US cybersecurity advisory panel will investigate malicious targeting of cloud computing environments, including Microsoft Corp.’s role in a recent breach of government officials’ email accounts by suspected Chinese hackers, the Department of Homeland Security confirmed on Friday. The review …
Wall Street’s top regulator on Wednesday was poised to adopt new rules requiring publicly traded companies to disclose hacking incidents, a measure officials said was being taken to help the investing public contend with the mounting cost and frequency of …
Covington & Burling must identify some clients caught up in a 2020 hack on the law firm to the U.S. Securities and Exchange Commission, a federal judge in Washington ruled on Monday in a case that could impact future cyberattack …
More small financial services businesses will be exempt, the rules will be tailored to reflect more diversity in businesses, and top executives of financial services firms will face heightened accountability under proposed changes to New York’s model financial services cybersecurity …
The $1.5 trillion government funding package that President Joe Biden signed Tuesday includes sweeping cybersecurity legislation that will require critical infrastructure operators to quickly report data breaches and ransomware payments. The new law mandates that companies report hacks to the …
Companies would face more pressure to alert the public of hacks or other significant cybersecurity incidents under a new plan from the U.S. Securities and Exchange Commission. The SEC will consider a proposal on Wednesday that would require publicly-traded firms …
Pennsylvania’s state Senate passed a package of legislation on Wednesday aimed at preventing data security breaches and requiring victims and law enforcement officials to be notified when they do happen. The bills’ passage comes barely two weeks after the state’s …
U.S. banking regulators on Thursday finalized a rule that directs banks to report any major cybersecurity incidents to the government within 36 hours of discovery. Separately, the banking industry said it had successfully completed a massive cross-industry cyber security drill …
The New York Department of Financial Services (DFS) has issued cybersecurity requirements for financial services companies (cyber rules) that went into effect March 1. The cyber rules, codified at 23 NYCRR §500, require insurance and insurance-related companies as well as …
