On April 29, 2026, the New York State Department of Financial Services (“DFS”) issued its first cybersecurity enforcement action of 2026—a Consent Order against Delta Dental Insurance Company and Delta…
Debevoise & Plimpton’s Data Strategy & Security (DSS) team is pleased to contribute to the Legal 500 Country Comparative Guides: Data Protection & Cybersecurity with a new “Hot Topic” chapter…
Cybersecurity incidents have become an ever-growing threat to companies as attacks become more sophisticated, particularly in the face of AI-enabled threat actors. When a cyberattack occurs, while the immediate focus…
The cybersecurity world has been in a state of alarm since Anthropic’s April 7, 2026, announcement of Claude Mythos Preview. And to many, the hysteria does not look like hype.…
On Wednesday, April 22, 3:15 PM – 4:00 PM (ET), Erez Liebermann will speak at Incident Response Forum D.C. 2026 on a panel titled “Cyber Threat Landscape: Preparation and Remediation.”…
On March 6, 2026, the White House released President Trump’s Cyber Strategy for America (the “Strategy”), a directional statement of the Administration’s cybersecurity priorities. The Strategy signals an aggressive posture…
The cyber threat landscape in 2025 was varied with greater ebbs and flows in threat actor activity than in previous years. After a relatively quiet first half, cyberattacks ramped up…
As we approach the end of the year, here are the Top 5 Cybersecurity posts on the Debevoise Data Blog in 2025. 1. Protecting Privilege in Incident Response: Litigation Lessons…
After several years of contentious negotiations, late last year the United Nations General Assembly adopted the UN Convention against Cybercrime (the “UNCC”)the most significant international agreement on cybercrime and electronic…
Overview Companies responding to data breaches are faced with the question of whether their incident response investigation is protected by attorney-client privilege or attorney work-product doctrine. The issue primarily relates…