Craig A Newman

April 03, 2019 | New York Law Journal

The conclusion of the “transitional period” for New York's cybersecurity regulation marks the beginning, rather than the end, of an organization's compliance efforts.

By Craig A. Newman and Kade N. Olsen

8 minute read

March 01, 2019 | New York Law Journal

Under the right circumstances, the SAFETY Act has the potential to become a new gold standard for companies that qualify for its protection and want to establish themselves as leaders in cybersecurity, both with respect to internal risk mitigation and with a view toward ensuring robust protection of customer or client data.

By Craig A. Newman, Peter C. Harvey, Alejandro H. Cruz and Joshua R. Stein

6 minute read

December 26, 2018 | National Law Journal

Can MGM use the SAFETY Act as a shield against the Las Vegas shooting litigation?

By Joshua R. Stein, Alejandro H. Cruz and Craig A. Newman

6 minute read

February 13, 2018 | National Law Journal

A Supreme Court ruling in a recent case would help clarify the standing issue for the lower courts, consumers and companies that suffer data breaches.

By Craig A. Newman and Jonathan Hatch

5 minute read

October 23, 2017 | Corporate Counsel

The Equifax data breach has been unlike any other. Its victims' did not voluntarily provide their personal information to the company, nor did they have the ability to opt out.

By Craig A. Newman

12 minute read

October 03, 2017 | New York Law Journal

Craig Newman and Maren J. Messing write: A legal feud is currently playing out in New York state court between the world's biggest hedge fund administrator and a former client, and it all started with an email from an address containing a single extra letter. At the center of the lawsuit is the question of responsibility for an email scam that resulted in hackers stealing millions in client funds, and it is a case study in the mounting problem of cyber wire fraud and allocating fault when funds go missing.

By Craig A. Newman and Maren J. Messing

9 minute read

January 02, 2014 | New Jersey Law Journal

The lack of a comprehensive national cyber policy has allowed the Federal Trade Commission to exert self-appointed authority, leading to two potentially landmark legal cases—cases that may soon decide if the agency has broad authority to dictate how businesses protect electronic and online data across industries.

By Craig A. Newman and Daniel L. Stein

4 minute read

December 23, 2013 | National Law Journal

Agency is overstepping its bounds, and two businesses are primed for a court battle.

By Craig A. Newman and Daniel L. Stein

5 minute read

June 17, 2013 | Corporate Counsel

Since the dawn of cybercrime, public companies have largely operated under the notion that, while they have a responsibility to guard their data, they have little duty to report attacks to investors and regulators. That is all about to change.

By Craig A. Newman and Daniel L. Stein

5 minute read

March 06, 2002 | National Law Journal

By Craig A. Newman

5 minute read