On Friday, May 12, 2017, governments, businesses and individuals were shocked when a ransomware attack known as WannaCry rapidly spread through cyberspace like a global pandemic. Businesses and individuals in more than 100 countries experienced compromised systems, with ransom demands ranging $300 to $600. The WannaCry malware infection has a unique method of propagation, targeting the Server Message Block protocol and exploiting known vulnerabilities in Microsoft Windows, which allowed it to rapidly spread like a worm.
Ransomware – a form of malware that encrypts critical data and systems with a ransom demand for virtual currency in exchange for encryption release – often is deployed through a weaponized phishing e-mail.
The WannaCry attack demonstrates the critical importance of cyber awareness training and system maintenance, including ensuring that anti-virus software is up-to-date, implementing a data back-up and recovery plan, scrutinizing links contained in emails, not opening attachments included in unsolicited emails, downloading software only from sites you know and trust, and enabling automatic patches for your operating system and web browser.
Just five days after the WannaCry outbreak, on May 17, 2017, the U.S. Securities and Exchange Commission (SEC) issued a Cybersecurity Ransomware Alert. The SEC emphasized the importance for broker-dealers, investment advisers, and investment companies to review U.S. Department of Homeland Security Guidance. Transparently, the SEC revealed that it recently completed 75 cybersecurity examinations and found deficiencies with cyber-risk assessments, penetration tests, and system maintenance. The SEC emphasized these deficiencies by disclosing that: (1) 5% of broker-dealers and 26% of investment advisers and investment companies did not conduct periodic risk assessments of critical systems to identify cybersecurity threats, vulnerabilities, and the potential business consequences; (2) 5% of broker-dealers and 57% of investment advisers and investment companies did not conduct penetration tests and vulnerability scans on systems that the firms considered to be critical; and (3) 10% of broker-dealers and 4% of investment advisers and investment companies had a significant number of critical and high-risk security patches that were missing important updates.
Looking back, more than two years has lapsed since FINRA issued its Report on Cybersecurity Practices in February 2015. Since then, we have witnessed a geometric expansion in cybercrime through global deployment of malware variants, including ransomware. Now more than ever, it is mission critical for organizations to take all necessary steps to mitigate the risks of falling victim to a future cyber-attack. Inclusion of experienced cybersecurity legal counsel is critical to effective organizational cybersecurity planning, readiness, response, and remediation, when the next cyber-attack hits you.
Search Blog
Follow Us
Recent Posts
- Construction Contractors Should Prepare for the Effects of Potential New Tariffs on Construction Material Prices and Availability
- Federal Court Strikes Down the DOL’s Increased Salary Thresholds for Executive, Administrative, Professional, And Highly Compensated Employee Overtime Exemptions
- Breaking News: FinCEN Postpones Beneficial Ownership Reporting Deadlines for Companies Impacted by Recent Major Storms
- What You Need to Know About the U.S. Department of Transportation’s Build America TIFIA Loan
- Breaking News: Federal Judge Blocks Nationwide Implementation of the FTC’s New Rule Banning Noncompete Agreements
- September 4th is Almost Here: How Employers Can Prepare for the Upcoming Effective Date of the FTC’s Non-Compete Rule
- Florida’s New Statutory Home Warranty: What Home Builders Need to Know
- Orange County Proposes Temporary Suspension Ordinance on New Development Applications
- Raising the Roof: The U.S. Department of Labor Announces Rule Raising Salary Thresholds for Overtime Exemptions
- New Guidelines Anticipated Following HHS’s Health Cybersecurity Concept Paper
Popular Categories
- Construction
- Construction Litigation
- Employment and Labor
- Litigation (Labor & Employment)
- Construction
- Business of Real Estate
- Landlord-Tenant
- Department of Labor
- Real Estate Law
- Competition
- Cybersecurity
- Intellectual Property
- Salary
- Appeals
- Contracts
- Litigation
- Trusts and Estates
- Data Security
- Business
- Supreme Court
- Development/Land Use
- Public Private Partnership
- IP Litigation
- Technology
- Privacy
- Patents
- Litigation (Appellate)
- Business
- Public Finance
- Regulatory Compliance
- Florida Government Contracts
- Foreclosures
- Trademark
- Contracting
- Health Care
- Financial Institutions
- Compliance
- Estate planning
- International Dispute Resolution
- Florida Public Contracts
- Government Contracting
- Government Contracts
- Property Tax
- Government
- Lease
- Conveyances
- Appellate Blog
- Patent Office
- Insurance
- Wealth planning
- Federal Government Contracting
- Florida Bid Protests
- Public Contracts
- Infringement
- Cyber fraud
- Proposal Writing
- Public Bidding
- GAO
- Bid Protest
- International Arbitration and Litigation
- Americans with Disabilities Act
- Arbitration
- International
- Restrictive Covenants
- Grant Writing
- Copyright
- Promissory Notes
- Title
- Small Business
- Florida Procurement
- Public procurement
- PTAB
- General Liability
- Technology
- Consumer Privacy
- International Arbitration
- Liens and encumbrances
- Liens
- Creditor's Rights
- Bidding
- Attorneys' Fees
- Inter Partes Review
- Consumer Protection
- Regulation
- Venue
- Power Generation
- Contracting
- Government Vendor
- State Government Contracts
- Ad Valorem Assessments
- Florida Administrative Law
- Attorneys' Fees
- Florida Rules of Appellate Procedure
- Bankruptcy
- Florida Public Procurement
- Russia-Related Arbitration
- Mortgages
- Record on Appeal
- FINRA
- Rehearing
- Eviction
- Loan guaranties
- Patents - Assignor Estoppel
- Statute of limitations
- Statute of repose
- Dispute Resolution
- Liens
- Damages
- Maritime
- Briefing
- Request for Proposal
- Patents - Obviousness
- Commercial Brokerage
- Trade Secrets
- Bid Writing
- Florida Bidding Strategies
- Renewal
- Attorneys' Fees
- Florida County Lands
- Florida Economic Incentive Packages
- Jury Instructions
- Design Professionals
- Stay
- Certiorari
- email hacking
- Forum Selection
- Offers of Judgment
- Prevailing Party
- Settlements
- Assignment of Contract
- Assignment of Proceeds
- Lis Pendens
- Appellate Jurisdiction - Deadlines
- Banking
- Designer Liability
- Federal Rules of Appellate Procedure
- Finality
- Fintech
- Marketing/Advertising
- Unlicensed Contracting
- Evidence
- Evidence
- Expert
- Expert Science
- Federal Supply Schedule
- Florida Public Records Law
- Mootness
- Preservation
- Socio-Economic Programs
- Sunshine Law
- Veteran Owned Business
- Homestead
- Partnerships and LLCs
- Standing
Editors
- Of Counsel
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Associate
- Partner
- Partner
- Associate
- Partner
- Partner
- Partner
- Partner
- Senior Associate
- Partner
- Associate
- Partner
- Senior Associate
- Partner
- Associate
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Partner
- Of Counsel
- Senior Associate
- Partner
- Associate
- Partner
- Partner
- Associate
- Partner
- Partner
- Partner
Archives
- December 2024
- November 2024
- October 2024
- September 2024
- August 2024
- June 2024
- May 2024
- February 2024
- November 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- January 2022
- December 2021
- October 2021
- September 2021
- August 2021
- July 2021
- June 2021
- May 2021
- April 2021
- March 2021
- February 2021
- January 2021
- December 2020
- October 2020
- September 2020
- August 2020
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
- October 2019
- August 2019
- July 2019
- May 2019
- April 2019
- March 2019
- February 2019
- January 2019
- December 2018
- November 2018
- October 2018
- September 2018
- August 2018
- July 2018
- June 2018
- May 2018
- April 2018
- March 2018
- February 2018
- January 2018
- December 2017
- November 2017
- October 2017
- September 2017
- August 2017
- July 2017
- June 2017
- May 2017
- April 2017
- March 2017
- February 2017
- January 2017
- December 2016
- November 2016
- October 2016
- September 2016
- August 2016
- July 2016
- June 2016
- May 2016
- April 2016
- March 2016