Cybersecurity & Privacy

  • August 01, 2025

    Senate Dem Pitches Way To Keep TikTok Online Without Sale

    U.S. Sen. Ed Markey, D-Mass., is floating a proposal that would require TikTok to be transparent about how it displays content and limit foreign access to user data in order to allow the app to escape a legislative mandate to cut ties with its Chinese parent company, ByteDance, or face a nationwide ban.

  • August 01, 2025

    4 Mass. Rulings You May Have Missed In July

    A cannabis company in the process of going out of business cannot rely on a state court receivership to shield it from creditors in other states and the owners of shuttered Norwood Hospital can't renew an expired permit issued to bankrupt Steward Health.

  • August 01, 2025

    6th Circ. Upholds Michigan Ban On Drone-Assisted Hunting

    The Sixth Circuit upheld a Michigan law that prohibits the use of drones for hunting, finding the state has a compelling reason to manage wildlife hunts despite the free speech objections lodged by the plaintiffs.

  • August 01, 2025

    FCC Asked To Narrow Undersea Cable Rule's License DQs

    The Federal Communications Commission might have been "excessively, and perhaps unintentionally, stringent" when it was drafting the new rules for undersea cables, a trade group told the agency, particularly when it comes to character disqualifications.

  • August 01, 2025

    Google Wants Pause On Play Store Order In Antitrust Fight

    Google asked the Ninth Circuit for an emergency administrative pause Friday on its looming deadline to open up the Play Store to alternative app distribution, saying it needs breathing room before it can formally seek a pause after the appellate court upheld Epic Games' landmark antitrust win.

  • August 01, 2025

    Banking TCPA Rule Changes Go Too Far, Consumer Org. Says

    Consumer advocates urged the Federal Communications Commission to reject changes floated by banking groups to rules for revoking consumer consent to receive calls and texts, saying they would cause confusion and make it harder to block unwanted contacts.

  • August 01, 2025

    Army Inks 10-Year Agreement With Palantir Worth Up To $10B

    The U.S. Army said a new 10-year enterprise agreement with Palantir Technologies Inc., worth up to $10 billion, will give it a streamlined and comprehensive framework to meet data and software needs.

  • August 01, 2025

    Taxation With Representation: Skadden, Wachtell, Latham

    In this week's Taxation With Representation, Union Pacific Corp. and Norfolk Southern Corp. announce megamerger plans, Palo Alto Networks acquires identity security company CyberArk, Brookfield buys British life insurer Just Group, and Duke Energy sells its Piedmont Natural Gas Tennessee local distribution business to Spire Inc.

  • August 01, 2025

    Hyundai, Kia Can't Get Rehearing On Cities' Car Theft MDL

    The Ninth Circuit won't hold an en banc rehearing on an appeal from Hyundai Motors America Inc. and Kia America Inc. seeking to dismiss negligence claims by cities in three of seven states in multidistrict litigation over their alleged failure to install anti-theft technology in millions of vehicles.

  • July 31, 2025

    Appeals Court Resurrects DC's Privacy Suit Against Facebook

    A Washington, D.C., appeals court Thursday revived a lawsuit from the district's attorney general accusing Facebook of misleading users about how their data could be shared with Cambridge Analytica and other third-party apps, finding the lower court relied on too high an evidence standard in axing the claims.

  • July 31, 2025

    Yahoo Says Chubb Unit Must Cover Potential EU Privacy Fines

    Yahoo says a Chubb subsidiary is obligated to cover regulatory fines that might be leveled against one of the tech company's subsidiaries for violating the European Union's data privacy law, but the insurer has refused to honor the policy, according to a lawsuit filed this week in Delaware.

  • July 31, 2025

    Flo Settles Privacy Fight Midtrial, Leaving Meta To Face Jury

    Flo Health Inc. told a California federal judge Thursday it had reached an agreement to settle claims that its popular menstrual-tracking app illegally shared sensitive health data of millions of women with Meta Platforms Inc. and Google, partially resolving a sweeping privacy case midtrial, and leaving Meta as the sole remaining defendant.

  • July 31, 2025

    Fed Joins In Letting Banks Use Third-Party Customer ID Info

    The Federal Reserve on Thursday relaxed a post-Sept. 11 identity check rule for banks under its oversight, joining other federal financial regulators in allowing the use of certain information provided by third-party sources.

  • July 31, 2025

    Microsoft Says Russian Hackers Spying On Moscow Embassies

    Microsoft Corp. has found evidence Russia has been targeting embassies within its borders with malware since at least last year, according to a new warning from the tech titan's threat intelligence team.

  • July 31, 2025

    DOJ Says Defense Co., PE Firm To Pay $1.75M For FCA Claims

    A defense contractor and private equity firm in California will pay $1.75 million to settle allegations that they failed to meet the cybersecurity requirements of a U.S. Air Force contract, federal prosecutors said Thursday.

  • July 31, 2025

    Colo. Court Affirms Stalking Conviction In 'True Threat' Case

    The Colorado Court of Appeals on Thursday declined to overturn the stalking and harassment convictions of a man who claimed his threatening emails to a police officer were protected First Amendment speech.

  • July 31, 2025

    Zoom Investor Gets Final OK For Derivative Suit Settlement

    A Delaware federal judge granted final approval on Thursday to a settlement reached in a shareholder derivative suit accusing the top brass of Zoom of pulling in $172.9 million via insider sales after its 2019 initial public offering and before shares fell during the early days of the COVID-19 pandemic.

  • July 31, 2025

    Troutman Adds Husch Blackwell Cyber Co-Leader

    Troutman Pepper Locke LLP announced Thursday the hiring of a former Husch Blackwell partner for its privacy and cyber practice group in Philadelphia.

  • July 31, 2025

    9th Circ. Upholds Google's Play Store Antitrust Trial Loss

    A Ninth Circuit panel Thursday affirmed Epic Games' 2023 antitrust jury trial win, along with an injunction requiring Google to open its Google Play Store to rivals, backing a landmark finding that Google monopolized the Android app-distribution market.

  • July 31, 2025

    Fintech, BofA, JPMorgan Face Class Suit Over Cyberattack

    Financial software company Finastra Technology Inc., Bank of America and JPMorgan Chase Bank NA face a proposed class action alleging they failed to properly safeguard customers' personal information that was exposed by a data breach.

  • July 30, 2025

    Sens. Step Up Push For Data Privacy Law Amid AI's Rise

    The leaders of a Senate data privacy subcommittee Wednesday put the spotlight back on longstanding efforts to craft a nationwide framework for how companies use and disclose consumers' personal information, arguing that a growing state law patchwork and the rise of artificial intelligence accelerated the need for such protections.

  • July 30, 2025

    Tornado Was A One-Stop Crypto Laundering Shop, Jury Told

    Manhattan federal prosecutors Wednesday made their final arguments in the money laundering and sanctions trial of Tornado Cash co-founder Roman Storm, claiming the cryptocurrency tumbler's privacy-focused ethos was just a fig leaf for dirty money that flowed through its "fancy online laundromat."

  • July 30, 2025

    Flo Likely To Get Health Privacy Claim Tossed In Meta Case

    The California federal judge overseeing a trial on allegations that Flo Health and Meta Platforms Inc. violated the privacy of millions of women who used Flo's period tracker app said Wednesday he'd likely toss the California Confidentiality of Medical Information Act claim, saying the lack of evidence is an "unsurmountable" problem.

  • July 30, 2025

    Illumina To Pay $9.8M To Resolve Cybersecurity Qui Tam Case

    Biotechnology company Illumina Inc. has agreed to pay $9.8 million in a settlement with the U.S. Department of Justice to put to rest a first-of-its-kind False Claims Act suit alleging the company violated cybersecurity regulations for medical devices, according to an announcement Wednesday.

  • July 30, 2025

    E-Commerce Firms To Pay $15M To End FTC's AI Scam Claims

    A New Jersey-based network of e-commerce coaching firms will pay more than $15 million to end a Federal Trade Commission suit accusing it of duping consumers out of nearly $16 million through false promises of AI-driven success on e-commerce platforms, according to a federal court order filed Wednesday.

Expert Analysis

  • How DOJ's New Data Security Rules Leave HIPPA In The Dust

    Author Photo

    The U.S. Department of Justice's recently effective data security requirements carry profound implications for how healthcare providers collect, store, share and use data — and approach vendor oversight — that go far beyond the Health Insurance Portability and Accountability Act, say attorneys at Nelson Mullins.

  • Opinion

    Section 1983 Has Promise After End Of Nationwide Injunctions

    Author Photo

    After the U.S. Supreme Court recently struck down the practice of nationwide injunctions in Trump v. Casa, Section 1983 civil rights suits can provide a better pathway to hold the government accountable — but this will require reforms to qualified immunity, says Marc Levin at the Council on Criminal Justice.

  • Courts Redefining Software As Product Generates New Risks

    Author Photo

    A recent wave of litigation against social media platforms, chatbot developers and ride-hailing companies has some courts straying from the traditional view of software as a service to redefining software as a product, with significant implications for strict liability exposure, say attorneys at Reed Smith.

  • Now Is The Time To Prep For SEC's New Data Breach Regs

    Author Photo

    Recent remarks from the U.S. Securities and Exchange Commission’s acting director of the Division of Examinations suggest that the commission will support exams for compliance with its new data breach detection and reporting regulations, and a looming deadline means investment advisers and broker-dealers must act now to update their processes, say attorneys at McGuireWoods.

  • How Banks Can Harness New Customer ID Rule's Flexibility

    Author Photo

    Banking regulators' update to the customer identification process, allowing banks to collect some information from third parties rather than directly from customers, helps modernize anti-money laundering compliance and carries advantages for financial institutions that embrace the new approach, say attorneys at Bradley Arant.

  • Series

    Playing Soccer Makes Me A Better Lawyer

    Author Photo

    Soccer has become a key contributor to how I approach my work, and the lessons I’ve learned on the pitch about leadership, adaptability, resilience and communication make me better at what I do every day in my legal career, says Whitney O’Byrne at MoFo.

  • How Trump Cybersecurity EO Narrows Biden-Era Standards

    Author Photo

    President Donald Trump recently signed Executive Order No. 14306, which significantly narrows the scope and ambition of a Biden executive order focused on raising federal cybersecurity standards among federal vendors, say attorneys at Jenner & Block.

  • Opinion

    The SEC Should Embrace Tokenized Equity, Not Strangle It

    Author Photo

    The U.S. Securities and Exchange Commission should grant no-action relief to firms ready to pilot tokenized equity trading, not delay innovation by heeding protectionist industry arguments, says J.W. Verret at George Mason University.

  • And Now A Word From The Panel: Back In Action

    Author Photo

    A lack of new petitions at the May hearing session of the Judicial Panel on Multidistrict Litigation caught many observers' attention — but a rapid uptick in petitions scheduled to be heard at this week's session illustrates how panel activity always ebbs and flows, says Alan Rothman at Sidley.

  • Compliance Changes On Deck For Banks Under Texas AI Law

    Author Photo

    Financial services companies, including banks and fintechs, should evaluate their artificial intelligence usage to prepare for Texas' newly passed law regulating AI governance, noting that the enforcement provisions provide for an affirmative defense to liability, say attorneys at Mitchell Sandler.

  • Series

    Law School's Missed Lessons: Learning From Failure

    Author Photo

    While law school often focuses on the importance of precision, correctness and perfection, mistakes are inevitable in real-world practice — but failure is not the opposite of progress, and real talent comes from the ability to recover, rethink and reshape, says Brooke Pauley at Tucker Ellis.

  • 23andMe Fine Signals ICO's New GDPR Enforcement Focus

    Author Photo

    Many of the cybersecurity failures identified by the Information Commissioner’s Office in its investigation of 23andMe, recently resulting in a £2.3 million fine, were basic lapses, but the ICO's focus on several new U.K. General Data Protection Regulation considerations will likely carry into the future, say lawyers at Womble Bond.

  • Midyear Rewind: How Courts Are Reshaping VPPA Standards

    Author Photo

    The first half of 2025 saw a series of cases interpreting the Video Privacy Protection Act as applied to website tracking technologies, including three appellate rulings deepening circuit splits on what qualifies as personally identifiable information and who qualifies as a consumer under the statute, say attorneys at Perkins Coie.

  • How The Healthline Privacy Settlement Redefines Ad Tech Use

    Author Photo

    The Healthline settlement is the first time California has drawn a clear line in the sand around how website tracking must function in practice, so if your site uses tracking technologies, especially around sensitive content like health or finance, regulators are inspecting your website's back end, not just its banner, say attorneys at Baker Donelson.

  • Series

    Adapting To Private Practice: From ATF Director To BigLaw

    Author Photo

    As a two-time boomerang partner, returning to BigLaw after stints as a U.S. attorney and the director of the Bureau of Alcohol, Tobacco, Firearms and Explosives, people ask me how I know when to move on, but there’s no single answer — just clearly set your priorities, says Steven Dettelbach at BakerHostetler.

Want to publish in Law360?


Submit an idea

Have a news tip?


Contact us here