Cyber Newsletter - December 2022

Published 15 December 2022

Welcome to the final edition of our Data and Cyber Bulletin in 2022, as we look at key events of the past year and expected developments moving into 2023.

We provide a wide-ranging overview of the year in cyber and a wrap-up of the evolution of business email compromise in the past year. Our team has also set out a comprehensive assessment of data breach trends in 2022, and commentary on the recent moves by the Information Commissioner’s Office to publish names of organisations suffering data breaches.

Looking at the issue of resilience, we address the extension in the UK of Network and Information Systems regulations to all digital managed service providers. We also highlight the successful passage of the Product Security and Telecommunications Infrastructure Act in the UK, and compare those measures to the proposed Cyber Resilience Act in the EU.

Our Dublin office considers the recent announcement that that the leadership structure of Ireland’s data regulator, the Data Protection Commission (“DPC”), is set to expand.

Looking forward to 2023, we look at the current position of the Online Safety Bill which sets out the Government’s updated plans to regulate the internet.

The UK’s Online Safety Bill: Where are we now?

We consider the recent moves to progress the Online Safety Bill through Parliament.

READ MORE

2022 Wrap Up – The evolution of Business email compromise

The evolution of business email compromise throughout the past year is discussed in our discussion of these phishing attacks.

READ MORE

Paving the path for expansion: Government approves plans for growth of the DPC

We discuss the recent announcement to expand the leadership structure of the data regulator in Ireland, the Data Protection Commission. The change is expected to consequently place an onus on the DPC to undertake a review of its governance structures, staffing arrangements and processes.

READ MORE

Tales from our MI: Data Breach Trends 2022

We share insight into the data breach trends that we have seen within our own management information throughout 2022.

READ MORE

MSPs to be brought within the scope of NIS Regs

We comment on the recent moves by the UK Government to extend the Network and Information Systems (NIS) regulations to all digital managed service providers, as part of continuing efforts to improve cybersecurity of companies providing critical services.

READ MORE

Named and shamed? ICO now publishing names of organisations suffering data breaches

We highlight recent moves by the Information Commissioner’s Office to publish the names of those companies and organisation which have suffered data breaches, and the implications of such a move.

READ MORE

Royal Assent for the PSTI Act – security and resilience of connected consumer products in the UK and EU

In association with our Legalign partner in Germany, BLD, we analyse legislative developments in both the UK and the European Union to address the security and resilience connected consumer products.

READ MORE

Cyber Risk: 2022 in review

We take a comprehensive walkthrough of the key developments in cyber, looking at issues linked to the insurance implications of state-led cyber operations, attacks on critical infrastructure and the wider issue of resilience. We also address wider issues such as the continued prevalence of ransomware and legislation to improve cybersecurity.

READ MORE

We hope you enjoy this month’s edition, and previous editions throughout the year. Please contact the authors of the articles should you wish discuss them further.