Inside Cybersecurity | Lawyers Warn of Expanded Data-Breach Enforcements by States to Address Operational Impacts

The New York Department of Financial Services (“NY DFS”) published an updated proposed Second Amendment to its Cybersecurity Regulation (23 NYCRR Part 500) in the New York State Register on June 28, 2023, updating its previous proposed Second Amendment, which was published November 9, 2022. While the language proposed is largely similar to the previous […]

The post NY DFS Releases Revised Proposed Second Amendment of its Cybersecurity Regulation appeared first on Alston & Bird Privacy, Cyber & Data Strategy Blog.

The New York State Department of Financial Services has issued an industry letter detailing the prior approval process for all New York banking organizations seeking to engage in new or significantly different virtual currency-related activity.

The New York Department of Financial Services (“DFS”) released their proposed second amendment to the Cybersecurity Regulation, 23 NYCRR Part 500 (“Proposed Second Amendment”) on October 9, 2022. DFS issued a minor amendment on April 2, 2020, revising the certification of compliance date (from February to April). The Proposed Second Amendment follows DFS’s “pre-proposed” draft […]

The post NYDFS Releases Significant Enhancements to its Cybersecurity Regulation in the Proposed Second Amendment appeared first on Alston & Bird Privacy, Cyber & Data Strategy Blog.

The New York Department of Financial Services (NYDFS) issued new guidance this week intended to assist organizations in thwarting ransomware attacks. The guidance clarifies the NYDFS’ expectation that NYDFS-regulated companies should “implement these controls whenever possible” and report any successful deployment of ransomware or unauthorized access to privilege accounts to the NYDFS under its established […]

The post NYDFS Issues Guidance on Cybersecurity Controls to Combat Ransomware and Clarifies Reporting Obligations appeared first on Alston & Bird Privacy, Cyber & Data Strategy Blog.