• |

    Mar. 25, 2026

AI Agent Security: What CISOs and GCs Need to Know to Defend the Enterprise

AI agents introduce an array of threats to companies distinct from those arising with traditional software. In multiple ways, agents expand the attack surface that organizations must defend. This article, the second in a two-part series on real-world security for AI agents, provides an action plan for CISOs and lawyers to strengthen security and reduce risks around AI agents, with expert perspectives from agent security specialists at Barndoor, Gravitee, Gray Swan, Skyflow and ZwillGen. Part one discussed corporate benchmarks revealed in three reports on actual incidents involving agents, and the safeguards and security measures that companies have begun to apply to agents. See “Restricting Super Users and Zombie IDs to Increase Cloud Security” (Jul. 31, 2024).

Connected Cars: The Legal Landscape

The data collected and used by connected cars is governed by a complex mosaic of federal, state and international laws, regulations and guidelines. Navigating this fragmented regime presents complex compliance challenges for automobile makers. This second article in a four-part series on connected cars presents an overview of the applicable legal framework. With supplemental context from the Cybersecurity Law Report, it distills insights shared by Morrison Foerster partners Marian Waldmann Agarwal, Alex van der Wolk and of counsel Jonathan Newmark during a firm program. Part one examined recent FTC enforcement activity related to connected vehicles. Part three will provide practical advice for navigating privacy issues raised by connected cars, including notice and consent; and part four will discuss the cybersecurity issues that connected cars present. See “Examining Newly Released Privacy and Security Guidance for the Fast-Driving Development of Autonomous Cars” (Oct. 5, 2016).

India Releases Rules for Its Digital Personal Data Protection Act

To operationalize the 2023 Digital Personal Data Protection Act (DPDPA), India’s first comprehensive data protection law, India’s Ministry of Electronics and Information Technology issued the law’s first set of regulations in November 2025 (Rules) and announced the effective dates for additional rules still to come. The Rules detail requirements on consent and notice, breach reporting, special protections for vulnerable groups (including children and persons with disabilities), cross‑border data transfers, and the structure and authority of the Data Protection Board of India, which adjudicates disputes over alleged misuse of personal data. This article unpacks the DPDPA as well as the Rules, and includes practical compliance guidance for companies as discussed by experts during a TrustArc panel. See “Update on Digital Governance in India and China” (May 21, 2025).

Goodwin Welcomes Three Cybersecurity, Privacy and Technology Partners to Launch Orange County Office

Richard Grabowski, John Vogt and Ryan Ball have joined Goodwin as partners to establish its new office in Newport Beach, California. Arriving from Jones Day, the trio is part of the firm’s complex litigation & dispute resolution group, with litigation practices focused on cybersecurity, privacy, technology, trade secrets and consumer financial services. For insights from Goodwin, see “What to Know About the Sleeping Giant That Is the SEC’s Amended Reg S‑P” (Dec. 10, 2025); and “Unpacking the AI Risks Disclosed in 2025 SEC Filings” (Sep. 10, 2025).

Most-Read Articles

Trailblazing Women – Contributions, Achievements and Observations of Outstanding Leaders

To mark International Women’s Day, Law Report Group editors, along with our colleagues across ION Analytics’ products, interviewed outstanding women in the industries and jurisdictions we cover. In this article, Jill Abitbol, Robin Barton, Rorie Norton and Megan Zwiebel profile notable women in the data privacy, cybersecurity, AI, private funds and anti-corruption law fields, including (i) Paula Howell Anderson, (ii) Gwendolyn Lee Hassan, (iii) Audrey Koh, (iv) Stacy Feuer, (v) Heather Egan, (vi) Jeewon Serrato, (vii) Stephanie Breslow, (viii) Anne Choe, (ix) Heather Wyckoff, (x) Angie Batterson, (xi) Jacqueline Eaves, and (xii) C. Dabney O’Riordan.

Enjoy reading their inspiring remarks here.