Photo of Susan Ross (US)

Susan Ross (US)

On May 13, 2021, the New York Department of Financial Services (NYDFS) announced a $1.8 million settlement with two related insurance companies, relating to violations of two different requirements of the NYDFS cybersecurity regulation during the period 2018 to 2019.

Read a discussion of the May 13 settlement by David Kessler, Susan Ross and Patrick

On March 3, 2021, the New York Department of Financial Services (NYDFS) announced a Consent Order with a NYDFS-licensed Maine-based mortgage banker and loan servicer settling alleged violations of the NYDFS cybersecurity regulations. (In the matter of Residential Mortgage Services, Inc., March 3, 2021).

As a result of the regular safety and soundness

On April 30, 2020, the US Federal Financial Institutions Examination Council (FFIEC), an interagency group of federal and state banking regulators, issued guidance on “Security in a Cloud Computing Environment.”

The FFIEC guidance focuses on security risk management principles and the financial services sector’s use of cloud computing, and supplements its publications on

On March 10, 2020, the New York Department of Financial Services (NYDFS) issued guidance to all of its regulated institutions engaged in virtual currency business activity, requiring them to have plans for preparedness to manage the possible operational and financial risks posed by the COVID-19 pandemic. NYDFS requires the plans to be submitted by Thursday,

On 3 October 2019, the UK and US governments signed the first bilateral Data Access Agreement (the Agreement) under the US Clarifying Lawful Overseas Use of Data Act 2018 (CLOUD Act) and the UK Crime (Overseas Production Orders) Act 2019.

The Agreement seeks to facilitate faster and more direct access by each

Last month, the Venezuelan Ministry of National Commerce issued a notice requiring patent and trademark fees to be paid in the cryptocurrency issued by the Venezuelan government — the Petro, which supposedly is backed by Venezuela’s oil and mineral reserves.

As noted in previous posts, the United States has been increasing its economic sanctions

The two-year transitional period under the New York State Department of Financial Services (“DFS”) Cybersecurity Regulation, 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective. Entities covered by the Regulation that utilize third party service providers, which include not only banks and insurers, but also other

On October 22, 2018, a U.S. federal trial court in Manhattan granted web services conglomerate Alibaba Group Holding Limited’s request for a preliminary injunction against several defendants that were offering cryptocurrency for sale, under the name “AlibabaCoin.” (Alibaba Group Holding Ltd. v. Alibabacoin Foundation, No. 18-CV-2897 (JPO) (S.D.N.Y. Oct. 22, 2018) Although neither

On September 18, 2018, the New York State Attorney General issued a 32- page report on its findings on the state of cryptocurrency platforms with respect to consumer protections. The Virtual Markets Integrity Initiative Report summarizes the results of the New York Attorney General’s April 2018 survey sent to 13 cryptocurrency platforms, including some located