- Posts by Alexander C.B. Barnard
Member of the FirmDrawing on more than 25 years of experience as a first-chair trial lawyer, Alex Barnard guides clients through the complexities of litigation matters. With a holistic approach, Alex considers each way litigation can impact a ...
As cybersecurity breaches grow more complex and frequent, regulators are increasingly focused on organizational compliance. Organizations such as Crowdstrike report that in 2025, cyberattacks are increasing in speed, volume, and sophistication—and cybercrime has evolved as a “highly efficient business.” The escalating threat landscape demands robust security frameworks that can withstand evolving risks.
Enter the amendments announced in November 2023 to the New York’s Department of Financial Services (NYDFS) Cybersecurity Regulation, 23 NYCRR Part 500 (“Amended Regulation”), that became effective on November 1. This post explores the breadth of these Amended Regulations, and the steps that covered entities need to take now.
Blog Editors
Recent Updates
- NYDFS Cybersecurity Crackdown: New Requirements Now in Force, and "Covered Entities" Include HMOs, CCRCs—Are You Compliant?
- The Case for Regular Legal Maintenance: A Litigation Readiness Mindset for Modern Health Care Organizations
- The Rising Threats of Multi-Modal and Agentic AI in Cyber Attacks
- State Insurance Department Statements Scrutinize MA and MedSupp Unfair Trade Practices
- DOJ Subpoena Seeks Health Information of Hospital Patients Receiving Gender-Affirming Care: Will Judge Grant Motion to Quash?