On January 26, 2022, the FBI, DOJ, and international law enforcement partners dropped a bombshell of an announcement: they had dismantled the infrastructure of one of the most prolific ransomware groups. Hive Ransomware has long been known as an extremely active group, responsible for many ransomware attacks, including against hospitals. But the full extent of the Hive network was unknown…

Our ninth annual cross-disciplinary discussion on predictions and priorities for the upcoming year took place on Tuesday, January 24, 2023, from 8:30 to 10:30 AM Eastern. Our Debevoise practice leaders shared their insights, predictions, and action items for 2023, including what companies, their boards of directors, and financial sponsors can do now to get ahead of these key issues. Avi…

On Thursday, January 12, 2023 at 3:00 PM EST Erez Liebermann spoke on a virtual panel entitled The Changing Tides of Regulation: Navigating New Regulatory Requirements and Guidance Around Cybersecurity and Ransomware. The conference’s faculty included senior government cybersecurity officials from the FBI and OFAC, and nearly two dozen other legal and consulting professionals in the field of ransomware response.…

Content generated by artificial intelligence (“AI”) continues to improve and become more convincing.  These realistic images, audio, and videos, where used for purposes of a misrepresentation or to falsely spread information, are commonly dubbed “deepfakes.”  Governments around the world are taking notice of deepfakes and beginning to respond.  As reported by the Wall Street Journal, China’s internet regulator announced rules…

The Data Strategy and Security team at Debevoise & Plimpton LLP has authored the Practising Law Institute’s 2023 edition of the Privacy Law Answer Book, a user-friendly guide to the laws and regulations that govern how companies collect, use, store and transfer the personal information of their consumers and employees. The book is styled as a Q&A so that practitioners can easily…

On January 10, 2023, the Financial Industry Regulatory Authority (“FINRA”) published its 2023 Report on FINRA’s Examination and Risk Monitoring Program (the “Report”), which is intended to provide member firms with key considerations and observations to use in enhancing their compliance programs. The Report discusses 24 topics relevant to the securities industry, including cybersecurity, as cyber threats continue to evolve…

2023 has arrived, and with it comes a novel patchwork of privacy requirements arising out of comprehensive state privacy laws that have been adopted (or amended) by legislatures in California, Virginia, Colorado, Connecticut and Utah. Although privacy practitioners have been busy analyzing these laws and assisting clients with compliance efforts, rulemaking in California and Colorado has made this a moving…

On Tuesday, January 10, 2023 at 11:00 AM ET,  Avi Gesser and Anna R. Gressel participated in a conversation with EEOC Commissioner Keith Sonderling on the use of artificial intelligence for hiring. This webinar addressed the following: The widespread adoption of AI for employment decisions The emerging regulatory landscape for AI hiring tools The role of the EEOC in the…

There is a growing trend among customer-facing businesses towards using artificial intelligence (“AI”) to analyze voice data on customer calls. Companies are using these tools for various purposes including identity verification, targeted marketing, fraud detection, cost savings, and improved customer service. For example, AI voice analytics can detect whether a customer is very upset, and therefore should be promptly connected…

To help celebrate the new year, we have another proposal on regulating the use of artificial intelligence for hiring to consider. On Friday, December 23, 2022, the New York City Department of Consumer and Worker Protection (the “DCWP”) released revised proposed rules (the “Revised Proposed Rules”) to implement its Automated Employment Decision Tool Law (the “AEDT Law” or the “Law”).…