44

New Articles

March 21, 2023

March 20, 2023

Time is ‘TikTok’-ing — ‘Being Real’ About Preemptively Addressing... by: Christina L. Wabiszewski and Kimberly K. Henrickson
What is Electronic Healthcare Records Fraud? by: Tycko & Zavareei Whistleblower Practice Group
NYSE, Nasdaq Propose Listing Standards Implementing SEC Clawback Rules by: Rebecca G. DiStefano and Barbara A. Jones
NY PSC Again Modifies Utility Procurement Requirements to Support ‘... by: Joel Meister
Will Jones Act Waivers Be a Viable Option in the Future? by: Dana S. Merkel and Jonathan K. Waldron
Mississippi Gaming Commission Agenda: March 23, 2023 Meeting by: Gulf States Gaming Law at Jones Walker
Florida Senate Bill Would Criminalize ‘Knowingly and Willfully’... by: Natalie L. McEwan
Maryland Senate Passes Commercial Finance Disclosure Law: House will... by: Joel L. Perrell Jr.
The EB-5 Fix Episode 2: The EB-5 Regulator & Policy Maker [... by: Shae Armstrong
2023 Affirmative Action Plan Certification Portal to Launch March 31... by: Labor and Employment Polsinelli
Survive and Advance: The Lateral Partner Interview Process (A March... by: Howard Cohl
Payor-Led Initiatives to Strengthen Mental Health Resources by: Audrey Crowell and Ariana R. Stobaugh
Senate Committee Will Hold Hearing on EPA’s Proposed FY 2024 Budget by: Lynn L. Bergeson and Carla N. Hutton
Weekly IRS Roundup March 13 – March 17, 2023 by: Sarah M. Raben
GAO Issues Noteworthy Protest Decision on Joint Venture Experience by: Aron C. Beezley and Patrick R. Quigley
EPA Releases Additional Data on Ongoing Uses of Chrysotile Asbestos by: Lynn L. Bergeson
National Advertising Division’s 2022 Annual Report: An Advertising... by: Katherine A. Spicer and Marisol C. Mork
New York State Amends Pay Transparency Law by: Stacey A. Bastone and K. Joy Chin
President Biden’s First Veto is on Congress’ Disapproval of ESG... by: Joseph C. Stanko and Scott H. Kimpel
No Fooling: City of Los Angeles Retail Fair Workweek Ordinance Takes... by: Leonora M. Schloss and Angela Quiles Nevarez
Is “French Dessert” Necessarily Made in France? by: Food and Drug Law at Keller and Heckman
The Rough Waters of Website Accessibility by: Hayley Singer Grunvald
Weekly Bankruptcy Alert: March 20, 2023 by: Business Practice Group Pierce Atwood
Australia and India’s Education Framework – What It Means for... by: Aniruddha Majumdar and Aparna Gaur
FTC Announces Orders to Address Deceptive Advertising on Social Media... by: Hunton Andrews Kurth’s Privacy and Cybersecurity
FDA Draft Guidance Signifies Acceptance of the Term “Milk” to... by: Michael A. Lundholm
March Madness: “The Truth” Fined by the SEC for Not Shooting Straight... by: Matthew G. Lindenbaum and Robert L. Lindholm
Non-Compete and No-Poach Agreements: Towards Convergence of the US... by: Anton Gerber
2023 State Privacy Laws and Regulations Bring Extensive Data... by: Alan L. Friel
Iowa to Be Sixth State to Pass a Consumer Privacy Statute by: Mary T. Costigan and Jason C. Gavejian
FDA Modernizes Mammography Regulations, Provides Facilities with... by: Joanne S. Hawana and Jane Haviland
US Copyright Office Issues Registration Guidelines for Works with... by: Matthew L. Finkelstein and Anthony V. Lupo
Antitrust: DOJ Scuttles ACO Guidance, Unsettles Ground Under Provider... by: Kinal M. Patel and Alexis Finkelberg Bortniker
Pennsylvania Commonwealth Court Holds Employer Financially... by: William F. McDevitt
DOJ Announcements on Corporate Compliance Programs, Compensation... by: Blockchain Law at Hunton Andrews Kurth
Amendment to Anti-Money Laundering Laws: A Relative Conundrum by: Ritul Sarraf and Prakhar Dua
SEC Obtains Court Judgment Against Unregistered Municipal Advisors by: Peter D. Hutcheon
DOJ Publishes New Corporate Compliance Guidance Related to... by: Hunton Andrews Kurth’s Privacy and Cybersecurity
EPA's eighth attempt to define the reach of the Federal Clean... by: Jeffrey R. Porter
High Court Smooths Out Wrinkles in Full Federal Court’s Protox... by: Chris Round and Phoebe Naylor
ATDS ANARCHY - The Five9 Dialer is Driving TCPA ATDS Trouble (Again)... by: Eric J. Troutman
The Gender Pay Gap and What Belgian Employers Need to Do About It (... by: Marga Caproni
H2 Production: A Shift Towards Electrolysis by: Jason A. Engel and Dr. Benjamin Fechner
Choice Of Law And Holding Companies by: Keith Paul Bishop
Court Affirmed The Decision To Not Probate A Copy Of A Lost Will by: David Fowler Johnson

March 19, 2023

Epa Joins Governor Polis at Denver Elementary School to Announce $3... by: EPA

March 18, 2023

Article By

Related Practices & Jurisdictions

All Federal

FTC Warns Use of "Full Legal Authority" on Companies That Ignore Log4j Risk

Monday, January 10, 2022

The Federal Trade Commission (FTC) sent a strong message to organizations in the wake of the Log4j security vulnerability: patch now or face regulatory scrutiny and potential legal action.

In the notice issued last week, the FTC acknowledged and emphasized that the Log4j vulnerability is being exploited by a growing set of attackers, which “risks a loss or breach of personal information, financial loss, and other irreversible harms.” The FTC made clear that, pursuant to federal laws such as the Federal Trade Commission Act and the Gramm-Leach-Bliley Act, organizations have “a duty to take reasonable steps to mitigate known software vulnerabilities.” Finally, the FTC cited to prior enforcement actions and stated that the agency will not hesitate to use its full legal authority “to pursue companies that fail to take reasonable steps to protect consumer data from exposure as a result of Log4j, or similar known vulnerabilities in the future.”

The FTC isn’t the only regulator with Log4j on its radar: the Securities and Exchange Commission (SEC) issued a “spotlight” on the vulnerability stating that “CISA and its partners are responding to active, widespread exploitation of a critical remote code execution vulnerability in Apache’s Log4j software library.” The SEC has a demonstrated track record of bringing enforcement actions against public companies for deficient disclosure and controls related to cybersecurity risks and incidents, including instances where companies failed to remediate known vulnerabilities.

As Log4j continues to grow in use and impact, organizations that believe they or their vendors might utilize the Log4j software should immediately review the Log4j Vulnerability Guidance issued by CISA and determine whether any remediation is necessary. And, for those organizations that have already taken remedial measures, or are in the process of doing so, they should ensure that all remedial steps have been adequately documented in anticipation of questions from regulators or other stakeholders. In order to avoid regulatory scrutiny, organizations should also ensure they maintain information security policies and procedures in line with their legal obligations and that reflect the evolving threat landscape.

Companies with additional questions about the Log4j vulnerability and its potential impact on technical threats and potential regulatory scrutiny or commercial liability are encouraged to contact outside cybersecurity counsel.

Latest Legal News & Analysis

Petition Filed to Add Cellulose Acetate to List of Chemical Substances Subject to...

Bergeson & Campbell, P.C.

Government Censorship By Proxy?

Allen Matkins Leck Gamble Mallory & Natsis LLP

Time is ‘TikTok’-ing — ‘Being Real’ About Preemptively Addressing Employees’...

Foley & Lardner LLP

What is Electronic Healthcare Records Fraud?

Tycko & Zavareei LLP

NYSE, Nasdaq Propose Listing Standards Implementing SEC Clawback Rules

Greenberg Traurig, LLP

TRENDING LEGAL ANALYSIS

Survive and Advance: The Lateral Partner Interview Process (A March Madness...

Major Lindsey & Africa

Payor-Led Initiatives to Strengthen Mental Health Resources

Sheppard, Mullin, Richter & Hampton LLP

Senate Committee Will Hold Hearing on EPA’s Proposed FY 2024 Budget

Bergeson & Campbell, P.C.

Weekly IRS Roundup March 13 – March 17, 2023

McDermott Will & Emery

GAO Issues Noteworthy Protest Decision on Joint Venture Experience

Bradley Arant Boult Cummings LLP

EPA Releases Additional Data on Ongoing Uses of Chrysotile Asbestos

Bergeson & Campbell, P.C.

Upcoming Legal Education Events

Life Sciences Lifeline: Pitch Deck Perfection

Tuesday, March 21, 2023

Is Trademark Protection Going to the Dogs? Copyright Fair Use

Tuesday, March 21, 2023

PEOs, EORs, and Bringing Benefits In-House: HR Solutions You Need To Know - Part 2

Tuesday, March 21, 2023

Foley’s 2023 Automotive EV Legal Outlook

Tuesday, March 21, 2023

About this Author

Philip Bezanson, white collar criminal defense, securities, attorney, Bracewell

Philip J. Bezanson

Managing Partner, Seattle

Philip J. Bezanson's practice focuses on white collar criminal defense, internal investigations, securities enforcement and regulatory matters.

Mr. Bezanson is a member of the Bracewell & Giuliani LLP team that has represented corporate and individual clients in recent high-profile and complex cases, including the Deepwater Horizon explosion, the George Washington Bridge lane closure and General Motors ignition switch investigations, "Pay to Play" cases in New York, New Mexico and Illinois, the stock options backdating cases, and a variety...

[email protected]

212-508-6138

www.bracewell.com

Brittney E. Justice

Brittney Justice Litigation Attorney Bracewell

Associate

Brittney Justice represents clients across a range of industries in litigation and government enforcement and investigations in federal and state courts. She provides advice on diverse matters, including securities litigation, complex commercial disputes, environmental claims and government investigations.

Prior to joining Bracewell, Brittney was a legal intern with Texas’ First Court of Appeals.

[email protected]

202.828.1744

bracewell.com

Claire E. Cahoon

Claire Cahoon Litigation Attorney Bracewell Law Firm

Associate

Claire Cahoon focuses her practice on complex commercial litigation and appeals. Prior to joining Bracewell, Claire served as a legal extern in the United States Attorney’s Office for the Northern District of Texas.

Education

Southern Methodist University Dedman School of Law, J.D.

2020 - magna cum laude

University of Southern California, B.A.

2016 - magna cum laude

Bar Admissions

Texas

Languages

Spanish — proficient

[email protected]

713.221.1428

bracewell.com

March 21, 2023

Volume XIII, Number 80

44

March 21, 2023

March 20, 2023

March 19, 2023

March 18, 2023

Article By

Related Practices & Jurisdictions

FTC Warns Use of "Full Legal Authority" on Companies That Ignore Log4j Risk

Latest Legal News & Analysis

TRENDING LEGAL ANALYSIS

Upcoming Legal Education Events

Education

Bar Admissions

Languages

Legal Disclaimer