Pennsylvania Supreme Court Holds Employers Have Duty to Protect Employee Data from Cyberattacks

By Joshua Mooney   As much of the country’s workforce traveled on the Wednesday before the Thanksgiving holiday, the Supreme Court of Pennsylvania issued a landmark decision in cybersecurity: under Pennsylvania law, employers have an independent duty to protect employee data from cyberattacks. Specifically, in Dittman v. UPMC, 2018 Pa. LEXIS 6051 (Pa. Nov. 21,
Read More »

Is Your Firm’s Data Secure? Common Law Firm Security Loopholes

By Jennifer Ellis, Esquire   Data breaches and identity theft are both serious and growing problems. Yet, many law firms fail to take the steps necessary to keep their clients’ information safe. Failure to protect not only your clients’ data, but the data of opposing parties, can lead to ethical issues, fines from government agencies
Read More »

Trick or Treat: Does the SEC’s October Report Signal a New Shift in Cybersecurity Enforcement?

By Joshua Mooney and Andrew Lipton, White and Williams LLP   On October 16, 2018, the Securities and Exchange Commission’s (SEC) Division of Enforcement issued a report on Cyber-Related Frauds Against Public Companies and Related Internal Accounting Controls Requirements (the Report)[1] warning that a public company’s failure to implement adequate cybersecurity controls to address the
Read More »

ABA Issues New Cybersecurity Ethics Rules for Lawyers

By Gwenn Barney, White and Williams LLP   Lawyers are advisors and advocates. Clients trust lawyers to preserve secrets, confidential matters that when disclosed could cause financial or reputational damage. A significant element of legal representation involves safe-guarding these confidences competently and also acting responsibly if an unauthorized disclosure occurs.   Law firms are prime
Read More »