Multi-defendant criminal investigations present a classic prisoner’s dilemma. The parties would benefit from cooperating with one another but are incented to become adversaries, most often due to a lack of information sharing and resultant lack of trust and transparency. Fortunately, the law provides a tool: the common-interest privilege, which enables parties to share information in … Continue Reading
The decision-making process involved in disclosing a cyber incident is a nuanced and delicate dance. Companies need to consider a myriad of factors, including when to disclose and how much detail to disclose to employees, customers, or regulators, such as the Securities and Exchange Commission (“SEC”). A New York bank was recently forced to pay … Continue Reading
The UK and US enforcement agencies have been actively pursuing insider dealing (“insider trading”, in US parlance) since the COVID-19 pandemic ended. The UK and US have different securities enforcement regimes, but both have seen recent developments expanding the scope of conduct that can be prosecuted. For individuals and organizations trading across multiple jurisdictions, it … Continue Reading
On June 27, 2024, the Supreme Court issued its opinion in Securities Exchange Commission v. Jarkesy. The Court held that the Seventh Amendment entitles a defendant to a jury trial when the SEC seeks civil penalties for securities fraud, because these cases replicate common law fraud claims. S.E.C. v. Jarkesy, No. 22-859, slip op. at … Continue Reading
With its second of two landmark decisions impacting the future of federal agency enforcement, SCOTUS struck down the Chevron decision last week. In a 6-3 decision in Loper Bright Enterprises v. Raimondo, the Court shifted enforcement power away from agencies and to the federal courts. The implications of the Chevron decision are both significant and … Continue Reading
SPB’s Keith Bradley authored an article for Bloomberg Law covering a recent SCOTUS decision with significant ramifications: SEC v. Jarkesy. We believe that Jarkesy will decidedly shift the landscape of agency adjudication and regulatory enforcement. For the background and possible implications of this decision, read the full article at Supreme Court’s Jarkesy Ruling Upends SEC … Continue Reading
In December 2023, the U.S. Securities and Exchange Commission’s (“SEC”) new rule requiring disclosure of material cybersecurity incidents became effective. SPB previously analyzed how the new rule applies to incidents affecting third-party vendors and what companies can do to manage reporting risks created by third-party cybersecurity incidents. In the first half of 2024, more than … Continue Reading
The rules on reporting cybersecurity risks and incidents pose many challenges for companies. Those challenges can be even more difficult when the cybersecurity incident affects third-party systems. With no exceptions for third-party cybersecurity incidents under the new cybersecurity reporting regulations, companies should take proactive steps to assess and respond appropriately to third-party cybersecurity incidents. The … Continue Reading
On March 1, 2023, the Department of Justice (“DOJ”) and the Securities and Exchange Commission (“SEC”) demonstrated continued interest in investigating insider trading by company executives who possess material non-public information when they unsealed an indictment and filed a civil complaint, respectively, in the Central District of California. Though a Rule 10b5-1 plan—an investment device … Continue Reading
In late April, the U.S. Securities and Exchange Commission (SEC) hit Yahoo with a $35 million dollar fine for failing to properly assess and disclose a 2014 data breach that affected more than 500 million user accounts. The case marks the first time the SEC has charged a public company with cybersecurity-related disclosure violations and … Continue Reading
