• |

    Mar. 19, 2025

Assessing and Managing AI’s Transformation of Cybersecurity in 2025

AI is transforming cybersecurity, boosting companies’ defensive tools. The rapid adoption of AI-enhanced products for cyber defense brings fresh-for-2025 legal and ethical challenges that organizations must address. In this guest article, Fisher & Phillips partner Daniel Pepper explores the new uses of AI technologies in cybersecurity, offers insight on legal considerations, recommends practical compliance and risk mitigation steps for in-house counsel who oversee implementation, and reviews the applicable legal landscape. See “Transforming Security and Privacy Workloads With Generative AI: A Comprehensive Framework” (Feb. 19, 2025).

Staying Ahead of Rising Identity-Based and Cloud Intrusions

The number of known cybersecurity adversaries continues to grow, along with the sophistication of their attacks and the quantity of targets. Attackers’ average breakout times diminished year-over-year, while voice phishing, attacks related to initial access and those exploiting the cloud all grew, according to the latest CrowdStrike Global Threat Report (Report). This article synthesizes the key lessons from the Report, including steps organizations can take to protect themselves against ever-evolving cyber threats. For coverage of other CrowdStrike reports, see “Examining the Cyber Threat Landscape Dominated by Stealth Attacks” (Mar. 20, 2024); and “Cloud Attacks and Six Other Cybersecurity Dangers for 2023 and 2024” (Apr. 26, 2023).

Present and Former SEC Officials Discuss Strategy, Testimony, Proffers and Negotiations

Although the new Trump administration is widely expected to favor business interests and ease regulatory burdens, the SEC is sure to continue its work rooting out misconduct in the financial markets. At this year’s Securities Enforcement Forum New York, a panel of present and former SEC attorneys discussed the critical stages of an investigation by the SEC Division of Enforcement. They offered guidance on preparing for initial contact with SEC staff; avoiding friction during the course of an investigation; preparing for interviews and on-the-record testimony; obtaining reverse proffers by the SEC; and managing the Wells process, negotiations and settlements. This article distills the key takeaways from the program. See “SEC Stresses Cybersecurity, AI and Crypto in Its 2025 Exam Priorities” (Dec. 18, 2024).

Seasoned Privacy and Cyber Partner Joins Troutman Pepper Locke

David Navetta has joined Troutman Pepper Locke as a partner and co-lead of the privacy and cyber team. He is based in Denver and arrives from Cooley. For insights from Troutman Pepper Locke, see “FTC Settlement Spotlights Security of APIs Proliferating Across the Internet” (Mar. 5, 2025); and “New Jersey and Oregon Advisories Contribute to AI Guidance From State AGs” (Feb. 12, 2025). For commentary from Navetta, see “Privacy Concerns in a Cashless Society” (May 11, 2016).

Most-Read Articles

Women to Watch: Contributions, Achievements and Observations of Outstanding Female Professionals

To mark International Women’s Day, women editors and reporters at ION Analytics interviewed outstanding women in the industries and jurisdictions we cover. In this part, Law Report Group editors Jill Abitbol, Robin L. Barton and Megan Zwiebel profile notable women in data privacy, cybersecurity, private funds and anti-corruption law, including Anne-Gabrielle Haie, Jessica Lee, Micaela McMurrough, Laura Perkins, Amanda Raad, Madelyn Calabrese, Ranah Esmaili and Genna Garver. Enjoy reading their inspiring remarks here.

Celebrating Data Privacy Day 2025

Read the full brief here.

Cybersecurity Awareness Month

Read the full brief here.