This past summer’s string of cyber enforcement actions signals that cybersecurity has become a top priority for the US Securities and Exchange Commission (SEC). These enforcement actions highlight the SEC’s scrutiny of written documentation and disclosures following incidents. In this National Cybersecurity Awareness Month Legal Update, we discuss the SEC’s recent cyber enforcement actions,

On June 11, 2021, the US Securities and Exchange Commission (SEC) announced that it would focus on cybersecurity disclosures made by public companies as part of its regulatory agenda. Given the SEC’s continued interest in cybersecurity issues, high-profile ransomware attacks and executive orders issued by President Biden, it is no surprise that the SEC is

On November 2, 2020, the U.S. Securities and Exchange Commission (“SEC”) Division of Enforcement staff published its annual enforcement report for fiscal year 2020. This has been an unprecedented year, including for the SEC’s Division of Enforcement. SEC Chairman Jay Clayton noted that the report highlights “enforcement’s extraordinary efforts” amidst the challenges of the COVID-19

In a press release on September 23, 2020, the US Securities and Exchange Commission (“SEC” or “Commission”), in a split 3-2 vote, amended its whistleblower program in an effort to further encourage whistleblowers to provide tips to the Commission. Along with the new rules, the SEC’s Office of the Whistleblower published guidance regarding the process