Ericka Johnson

CPW’s Ericka Johnson and Gicel Tomimbang will be the featured speakers at ISSA (Information Systems Security Association) Los Angeles chapter’s June in-person meeting focused on latest cyber threats to national security.  The Biden administration has identified cybersecurity as a national and economic security focus, and has implemented new regulations, expanded existing authorities, and

Indiana passed HB 1351 in March 2022, amending Indiana’s data breach notification law. Indiana’s breach notification law, as currently drafted, requires entities to notify Indiana residents and the Indiana Attorney General of a breach of the security of data without unreasonable delay and consistent with any measures necessary to determine the scope of the breach

Although data breaches and data breach litigation are not rare, trials concerning the appropriate response to cybersecurity incidents are.  For this reason many, particularly those involved with incident response, have been keeping a close eye on a federal trial underway in Missouri.  The case involved a law firm sued by its former client, an insurance

As covered here at CPW, President Biden recently signed into law the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (the “Act”).  While the Act presents a plethora of issues for litigators and compliance professionals to consider, CPW has identified five key points that businesses should know about the Act:

  1. Many Critical Ambiguities

On March 21, 2022, President Biden warned U.S. companies, particularly those operating in critical infrastructure sectors, that “[b]ased upon evolving intelligence, Russia may be planning a cyberattack against us.”  See details here.  The evolving intelligence appears to be based upon, among other things, a March 18th advisory from the FBI to U.S.

On March 21, 2022, President Biden publicly recognized that, while his Administration is prioritizing modernizing the federal government’s cybersecurity practices, it is the patriotic obligation of the private sector to invest as much as it can in preparing for cyberattacks.

Over the course of the past month, media images of the war in Ukraine show

Background

President Biden has recently delivered on a long stated priority of his presidency: requiring the disclosure of cyber security incidents for companies that operate critical infrastructure. After announcing an executive order in May 2021 aimed at modernizing the federal government’s cybersecurity practices, the same sweeping changes will now effect private companies that operate critical

This month on Tuesday March 15 at 3pm London time CPW’s Kristin Bryan and Ericka Johnson will be participate in a leadership roundtable at Developing Data Privacy, Cyber Security & GRC Roadmap: Aligned with the Mission, Value, and Strategic Agenda of Your Business.  Kristin will share her perspective on developments in AI and biometric litigation

Data breach litigation continues to expand with each new state law passed to regulate data storage and disclosures. This context poses particular challenges for protecting the attorney-client privilege and work-product doctrine.  In the wake of cybersecurity, data breach, or data disclosure incident, it is routine to retain outside counsel and third-party forensic experts to investigate.

Data breach litigation continues to expand with each new state law passed to regulate data storage and disclosures. This context poses particular challenges for protecting the attorney-client privilege and work-product doctrine.  In the wake of cybersecurity, data breach, or data disclosure incident, it is routine to retain outside counsel and third-party forensic experts to investigate.