Reed Smith Regulatory & Investigations’ Post

According to legal analysts, a Judge's recent ruling in the SEC's lawsuit against a software provider limits the agency's stern cybersecurity enforcement aspect. Read more here! https://lnkd.in/eB8YA_Vc #finance #compliance #CorporateFinance

Privacy & Information Security Law Blog - Hunton Andrews Kurth LLP: Privacy & Information Security Law Blog  Hunton Andrews Kurth LLP #CyberSecurity #InfoSec #SecurityInsights

Privacy & Information Security Law Blog - Hunton Andrews Kurth LLP: Privacy & Information Security Law Blog  Hunton Andrews Kurth LLP #CyberSecurity #InfoSec #SecurityInsights

The COLP Insider newsletter is out‼️ Sign up for free regular compliance updates. This week: ✅ Is time padding an endemic ethical crisis in law firms? What does it say about law firm culture? ✅ New NCA guidance on submitting DAMLs ✅ Free CPD on SLAPPs and NDAs and cyber security ✅ Disciplinary roundup (more fines and rebukes) https://lnkd.in/euNhnZmB

Privacy & Information Security Law Blog - Hunton Andrews Kurth LLP: Privacy & Information Security Law Blog  Hunton Andrews Kurth LLP #CyberSecurity #InfoSec #SecurityInsights

🔒 TRC Staffing Data Breach: What You Need to Know and How to Protect Yourself TRC Staffing recently suffered a significant data breach, compromising sensitive information of 158,593 individuals. Murphy Law Firm is now investigating and considering a class action lawsuit to help victims. Discover how this breach impacts you and the steps you can take to safeguard your identity. Read more: https://bit.ly/4bBCbqP #cybersecuritynews #threatintelligence #darkweb #threatactor #hackernews

Nebraska is the first state to sue Change Healthcare over its February 2024 ransomware attack and data breach. The lawsuit alleges violations of state data protection and consumer privacy laws. It is likely to be one of many lawsuits filed by state Attorneys General over the massive data breach. https://lnkd.in/eupEm7EW

It's out!! The new Failure to Prevent Fraud Offence guidance can be viewed here: https://lnkd.in/g_tZNagA We're already digesting the changes made to the previous draft guidance (that version that we and our clients/ contacts fed into earlier in the year). The FTP offence is live from 1 September 2025 so looking forward to re-engaging on the steps that businesses now must take to ensure they have reasonable fraud prevention measures in place. In the meantime, see our fraud prevention site here (https://lnkd.in/gUCYtsYx) where you can also re-visit our thought leadership on the new offence and the business view on fraud prevention/ preparedness. #fraud #fraudprevention #failuretoprevent

If your company is a United States Department of Defense (“#DoD”) contractor or someone who provides services to them, you’ve probably (hopefully!) heard about the #Cybersecurity #Maturity #Model #Certification (“#CMMC”) program. And as part of your education about CMMC, you probably learned about the #False #Claims #Act (“#FCA”), which penalizes government contractors for making material, false #compliance claims to the government. Under the FCA, not only the government, but also whistleblowers (i.e., those with information or belief that a false claim has been made), can bring suit for a false claim. These whistleblowers can receive 15-30% of any damages awarded to the government as a result of their suit. This creates a strong incentive for employees and business partners to report wrongdoing. The U.S. Department of Justice’s (“#DoJ”) new(ish) #Civil #Cyber #Fraud initiative has amped up the heat on #government #contractors, and DoJ is seeing a significant increase in the number of #whistleblower cases. But what happens when you want to be a whistleblower, but you’re caught up in the middle of things? Is it fair to come forward and report misdeeds, only to be prosecuted by the same people to whom you’ve reported the problems? DoJ appears to think that the answer is “no”, and they have created a new program that takes some of the potential sting out of being a whistleblower. Under this pilot program, individuals with criminal exposure—not including CEOs, CFOs, high-level foreign officials, domestic officials at any level, or individuals who organized or led the criminal scheme—who come forward and report misconduct that was otherwise unknown to DoJ will be eligible to receive a non-prosecution agreement (“NPA”) if they meet certain criteria. Culpable individuals will receive an NPA if they (1) voluntarily, (2) truthfully, and (3) completely self-disclose original information regarding misconduct that was unknown to DoJ in certain high-priority enforcement areas (including government contracts), (4) fully cooperate and are able to provide substantial assistance against those equally or more culpable, and (5) forfeit any ill-gotten gains and compensate victims. The pilot program is designed to provide predictability and certainty by offering a pathway for culpable individuals to receive an #NPA for truthful and complete self-disclosure to DoJ. This will likely further increase the number of whistleblower cases, and increase pressure on government contractors to ensure they are complying with various regulations. More details are in the announcement, below. https://lnkd.in/eFy8Z-_K