Data Incident Response

Our Incident Response Team acts quickly and decisively, leveraging our trusted network of forensic investigators, breach notification vendors, call centers, crisis communications firms, and cyber insurance partners to help clients respond with confidence – whether the issue affects 500 or 5 million individuals.

We represent clients across all industries, including some of the most highly regulated sectors, such as financial services, health care, insurance, education, and energy. Whether advising a Fortune 100 company on a nationwide ransomware attack, assisting a regional health care provider with HIPAA breach reporting, or guiding a startup through its first incident, we tailor our response to meet the unique demands of each situation. No matter the size or complexity of the matter, our team brings the same level of focus, responsiveness, and strategic insight to every engagement.

Recognized as an authorized NetDiligence® Breach Coach, our team is a go-to advisor for organizations across industries, including health care, financial services, retail, education, and critical infrastructure. We don't just know the law – we know how breaches really unfold and how to protect your brand, your customers, and your bottom line.

Comprehensive Cyber Incident Response Services

At Baker Donelson, our Incident Response Team delivers comprehensive support at every stage of a cyber incident or data breach – from first alert to full recovery – including:

• communicating on behalf of our clients with state and federal law enforcement agencies with whom we have established relationships;
• appropriately working with industry experts to assist with detection, containment, and recovery;
• managing communications with vendors, employees, customers, and other key stakeholders;
• collaborating with established expert third-party resources to advise clients on ransomware negotiations;
• responding to any state and federal government investigations or enforcement actions that result from an incident;
• coordinating e-Discovery efforts when exfiltration is identified;
• providing analysis to assist in developing post-incident remediation; and
• representing clients in ensuing litigation, including class action cases, involving data incidents.

Success Stories

Our experience spans hundreds of cyber incidents, from complex, multijurisdictional breaches to targeted attacks on small and mid-sized organizations. We are trusted by clients across the country from all industries to lead them through their most sensitive and high-stakes cybersecurity events. The following are just a few examples that highlight how our team has delivered strategic, results-driven guidance to help clients contain threats, manage regulatory exposure, and protect their reputations when it mattered most.

Swiftly Navigated a Complex Ransomware Crisis

Successfully led an incident response team for a medical information technology company after a ransomware attack, mitigating operational disruptions and ensuring compliance with HIPAA. Oversaw regulatory interactions, breach notifications in multiple states, coordination with law enforcement, and effective crisis communications – minimizing litigation risks and restoring stakeholder confidence.

Comprehensive Management of Multistate Ransomware Incident

Directed the response to a ransomware attack on a national transportation and logistics company, ensuring compliance with breach notification laws across 30 states. Managed law enforcement interaction and oversaw crisis communications, providing strategic leadership during a critical business interruption.

Resolved a High-Stakes Wire Fraud Incident

Successfully represented a U.S. distribution company for an international lubricant brand following a phishing attack resulting in substantial wire fraud. Navigated complex privacy law requirements, including GDPR and U.S. regulations, while coordinating breach notifications in more than 14 states and coordinating with law enforcement to address the cybercrime.

Mitigated a Large-Scale Data Incident for a National Bank

Represented a national bank during a vendor data breach affecting hundreds of corporate clients and more than 250,000 individuals. Guided the bank through sensitive customer communications and regulatory obligations, preserving trust and minimizing reputational harm.

Secured Schools After a Ransomware Attack

Successfully negotiated and resolved a ransomware attack on a school board that disrupted the education of more than 5,000 students. Managed crisis communications and guided the organization through restoring operations with minimal long-term impact.

Defended an E-Commerce Leader in Regulatory Investigations

Supported a leading e-commerce company after a phishing attack compromised multiple employee email accounts. Provided guidance on regulatory compliance under PCI-DSS and successfully responded to state attorneys general investigations, ensuring continuity in operations.

Protected a Hospital System in a Federal Investigation

Achieved a favorable resolution for a large hospital system following a data breach, navigating an Office for Civil Rights (OCR) investigation, and ensuring compliance with HIPAA regulations while avoiding adverse actions.

Addressed Employee Data Theft for a Brokerage Firm

Advised a national brokerage firm on regulatory and individual notification obligations following the theft of electronic data by an employee, ensuring regulatory compliance and minimizing potential legal repercussions.

Assisted With the Recoupment of Stolen Funds for a Banking Client

Represented a bank in a wire fraud incident, successfully negotiating the return of a significant portion of stolen funds.

Resolved Patient Data Theft for a Mental Health Facility

Assisted a mental health facility in responding to a former employee's theft and misuse of patient records, ensuring proper notification and remediation efforts to protect sensitive patient information.

Remediated a Data Breach for Automotive Dealerships

Advised a network of automotive dealerships on breach notification and remediation after a theft of employee data. Implemented measures to ensure regulatory compliance and reduce future risks.

Resolved Data Breach Litigation

Successfully defended a national company in a class action lawsuit resulting from a phishing attack. Secured a favorable resolution that minimized financial and reputational damage.

Obtained Exoneration in a Large-Scale OCR Investigation

Represented a business associate during an OCR investigation of a data breach potentially impacting 3.5 million individuals. Successfully documented the client's robust security protocols, resulting in the OCR dismissing the investigation.

Represented a National Health Care Supplier in a Ransomware Attack

Represented the client in response to a ransomware attack that resulted in notification to more than 2 million individuals. Successfully responded to both state and federal (OCR) investigations of the incident; all investigations were closed with no adverse action against the client.

Managed the Response to an Incident for a Government Contractor

Oversaw an incident for a government contractor, including engaging and working with crisis communication experts to draft and manage employee, media, and stakeholder communications. Assessed notification obligations to, and managed communications with, multiple government agencies given the client's government contracts and funding. Successfully resolved the matter without any individual notifications being required.

Team Member Credentials

Our team holds certifications from the International Association of Privacy Professionals (IAPP) – the world's leading organization for privacy professionals – as well as other respected industry credentialing bodies. These certifications reflect our deep understanding of global privacy laws, data protection frameworks, and incident response best practices. In high-pressure breach scenarios, our clients benefit from working with professionals who not only know the law but also have the technical fluency and regulatory insight to respond swiftly and strategically. Our team's credentials include:

• Artificial Intelligence Governance Professional (AIGP)
• United States-Focused Certified Information Privacy Professional (CIPP/US)
• Europe-Focused Certified Information Privacy Professional (CIPP/E)
• Canada-Focused Certified Information Privacy Professional (CIPP/C)
• Certified Information Privacy Technologist (CIPT)
• Privacy Management-Focused Certified Information Privacy Manager (CIPM)
• GIAC Law of Data Security & Investigations (GLEG)
• Privacy Law Specialist (PLS)
• Payment Card Industry Professional (PCIP) Certified Information Security Manager (CISM)
• Certified Information Systems Security Professional (CISSP)
• Qualified Technology Expert (QTE)

We believe that preparation is the best defense. To support our clients and the broader business community, we provide practical, easy-to-use resources designed to strengthen cyber-readiness and streamline data breach response efforts. Our materials reflect real-world experience and industry best practices. Whether you are building a program or navigating an incident, these free tools are here to help you stay ahead.

• Checklist for Preparing an Incident Response Plan
• Tabletop Exercise Best Practices
• The Role of Third Parties in Cyber Incidents
• Cyber Best Practices
• Basics of Ransomware
• Five Components of SEC Cybersecurity Disclosure Rules

• "Critical Microsoft SharePoint Vulnerability: What You Need to Know" (July 2025)
• "California AG Secures Landmark Privacy Settlement Over Tracking: What It Means for Your Website" (July 2025)
• "The Perils of Legal Hallucinations and the Need for AI Training for Your In-House Legal Team!" (June 2025)
• "Digital Marketing Meets DOJ Oversight: What Businesses with Digital Campaigns Should Do to Manage AdTech Risks" (June 2025)
• "DOJ Final Rule Casts Wider Net: Common Business Data May Now Trigger National Security Scrutiny," republished in Infosecurity Magazine (June 2025)
• "Insider Threats Are Just as Dangerous as Ransomware – Lessons from the Latest OCR HIPAA Settlement," republished July 1, 2025, in Cyber Defense Magazine (June 2025)
• "DOJ Bulk Data Rule: Key Takeaways for Healthcare and Life Sciences" (May 2025)
• "Privilege Under Fire: Protecting Forensic Reports in the Wake of a Data Breach," republished June 6, 2025, in Westlaw Today (May 2025)
• "CFPB Proposes Rule to Regulate Data Brokers Selling Sensitive Information," republished on January 14, 2025, in Law.com (December 2024)
• "California's New Generative AI Law – What Your Organization Needs to Know," republished in California Daily Journal (December 2024)
• "Ten Best Practices to Protect Your Organization Against Cyber Threats," republished in Corporate Counsel (November 2024)
• "Lessons From the Suffolk County Ransomware Attack That Apply to All Businesses" (October 2024)
• "Data Breaches: The Not-So-Hidden Cost of Doing Business," republished in Corporate Counsel (October 2024)
• "The Office for Civil Rights Recently Settled Two Ransomware Related Investigations" (October 2024)
• "Best Practices for Protecting Operations from Vendor's Cyber Incidents" (October 2024)
• "Happy Hack-tober! Don't be Scared: How to Protect Your Business from RaaS Threats," republished in CPO Magazine (October 2024)
• "Top Privacy and Cybersecurity Issues to Track In 2024," Republished February 5, 2024, in CPO Magazine (January 2024)
• "Show Your Work: The SEC Cyber Rules and Documenting Materiality Analysis Under NIST FIPS 199" (October 2023)
• "New SEC Rules: Public Companies Must Report Material Cybersecurity Incidents Within Four Business Days," republished August 1, 2023, in Corporate Compliance Insights (July 2023)
• "MOVEit Transfer Zero-Day Vulnerability: What Companies Need to Know," republished in CPO Magazine (June 2023)
• "FTC Proposes Rulemaking to the Health Breach Notification Rule to Include Information Disclosures by Health Apps and Other Technologies" (May 2023)
• "SEC Issues Multiple Cybersecurity Rule Proposals," republished May 3, 2023, in Corporate Compliance Insights (March 2023)
• "VPPA Claims Are on the Rise – Latest Trend in Consumer Privacy Class Action Litigation," republished in Daily Business Review (March 2023)
• "NCUA Approves New Cyber Incident Reporting Requirements: What Credit Unions Need to Know" (February 2023)
• "U.S. Health Care Sector Should Take Immediate Mitigating Actions Due to Targeted Attacks by Pro-Russia Hacktivist Group" (February 2023)
• "Beware of Cyber Attacks During the Holiday Season – Royal Ransomware Group Highlighted as Threats to the Health and Public Health Sectors" (December 2022)
• "Software Developers With Federal Government Customers Must Provide Confirmation of NIST Standards," republished November 16, 2022, in Federal News Network (September 2022)
• "New Legislation Will Require Critical Sector Entities to Report Certain Cyber Incidents," republished April 7, 2022 in, CPO Magazine (March 2022)
• "New Safeguards Rule: How Will It Impact Financial Institutions?," Westlaw (December 2021)
• "Protecting Privileged Forensic Reports," Today's General Counsel (December 2021)
• "Ransomware State of the Union: Regulations, Trends and Mitigation Strategies," Reuters and Westlaw Today (October 2021)
• "What Boards of Directors Need to Know about Cyber Incident Response," Reuters and Westlaw Today (August 2021)
• "Incident Response Considerations: Protecting the Attorney-Client Privilege," Reuters and Westlaw Today (June 2021)
• "How to Contend With a 21st Century Ransom Note," ABA Banking Journal (April 2021)
• "NYDFS Surges Ahead with Cybersecurity Enforcement: Recent Fine Highlights Need for Financial Institutions to Focus on Incident Response" (March 2021)
• "Key Takeaways from Recent Cyberattack Resulting in Demise of Hedge Fund" (February 2021)
• "U.S.'s First Cyber Insurance Risk Framework Issued by New York Department of Financial Services," republished in Property Casualty 360 (February 2021)
• "Data Privacy Day: Top Considerations for 2021," republished in CPO Magazine (January 2021)
• "Proposed NY Privacy Bill Would Increase Business Obligations and Litigation/Enforcement Exposure for Businesses, Including Financial Institutions," republished in Banking Exchange (January 2021)
• "Faster and More Comprehensive Breach Notification Requirements Proposed for Banks," republished in BankBeat (January 2021)
• "The Year Ahead: Privacy and Cybersecurity Issues Facing Financial Institutions in 2021," republished in Bank Beat (January 2021)
• "New Ransomware Advisories from OFAC and FinCEN Create Additional Challenges for Financial Institutions" (January 2021)
• "Cyber Criminals Now Have the Keys to Your "House"" (December 2020)
• "FBI Warns Hospital and Health Care Providers are Under Attack" (October 2020)
• "HHS Releases Update to Security Risk Assessment Tool" (September 2020)
• "OCC Issues Guidance on Safekeeping and Custody Services for Cryptocurrency," republished in Corporate Compliance Insights (August 2020)
• "Lessons Learned from the NYDFS First Cybersecurity Regulation Enforcement Action," republished August 26, 2020, in Westlaw (July 2020)
• "Human Resources and Employment Counsel Beware: Increase in Malware Attacks Raising New Concerns for Employers" (June 29, 2020)
• "COVID-19 – Cybersecurity Risks for Health Care and Research Institutions are Heightened," republished June 2, 2020 in Corporate Compliance Insights (May 18, 2020)
• "Critical Guidance for Financial Institutions on Security Considerations for Cloud Computing Environments," republished in Banking Exchange (May 2020)
• "Don't Forget About Cyber Hygiene During Coronavirus (COVID-19) Outbreak," republished in Corporate Counsel (March 3, 2020) and Beazley Academy (March 17, 2020)
• "Data Privacy Day 2020 – What Actions Businesses Can Take," (January 2020); republished in Corporate Counsel (February 2020)
• "Updated Version of HHS Security Risk Assessment Tool Released " (November 2019)
• "FDA Issues Cybersecurity Alert to Health Care Providers and Device Manufacturers" (October 2019)
• "Failure to Comply with the Cybersecurity Requirements of Your Government Contracts Can Lead to False Claims Act Liability," (August 2019); republished in Westlaw Journal Government Contracts (September 2019)
• "Cybersecurity Preparedness: Standardization is Key," republished October 2019, in Westlaw Journal Bank & Lender Liability (August 2019)
• "FERC Imposes Cybersecurity Standards on Third-Party Utility Vendors" (February 2019)
• "More Help for Health Care Organizations: HHS Releases Voluntary Cybersecurity Practices Developed with Industry Input" (January 2019)

• "Critical Incident Response Considerations: How to Prepare for and Respond to a Cyber Attack," Co.Mobility Summit Workshop (May 2024)
• "Tech Talks: Critical Incident Response Considerations" (April 2024)
• "The International Cyber Drill Experience: Cross-Border Breach" (December 2019)
• "Local Perspective: How Louisiana is Addressing Cyber Attacks and What Businesses Can Do to Protect Themselves" (November 2019)
• "Data Privacy and Security: The Role of the Tennessee Attorney General's Office" (October 2019)
• "Cybercon 2019" (September 2019)
• "JW Signature Cybersecurity Conference" (January 2019)
• "Women in Tech, Securing Medical Devices, Health Records, and Cloud" (October 2018)
• "Cybercon 2018" (October 2018)
• "Cybercon 2017" (October 2017)
• "Cybersecurity for the C-Suite and Management" (August 2017)
• "Secure Chattanooga - Cyber Summit" (May 2017)
• "Ransomware: More than a Technical Issue – Do You Need to Disclose?" (May 2017)
• "Cyber Threats to Your Business" (October 2016)
• "Cybercon 2016" (September 2016)
• "Cybersecurity Forum with Israel and the American South," Atlanta, Georgia (August 2015)
• "Chattanooga Cyber Summit" (May 2015)
• "Tri-City Cyber Summit" (May 2015)
• "Knoxville Cyber Summit" (February 2015)
• "Data Security and Privacy Essentials for an Unsecure World" (October 2014)
• "Will Your Company Survive a Data Breach?" (March 2014)

• Human Resources' Evolving Role with Technology Changes Including AI, Privacy, and Cybersecurity – A Survival Guide (June 2025)
• 2025 Cybersecurity & Data Privacy Outlook: Trends, Threats, and Tactics (January 2025)
• New Privacy and Cybersecurity Regulations: What Financial Institutions Need to Know to Stay Compliant (June 2024)
• The SEC Cyber Rules and Materiality: Show Your Work! (October 2023)
• Evolving Technology: Cybersecurity and Data Privacy in the Era of ChatGPT (May 2023)
• Top 10 Cybersecurity and Privacy Issues for 2023 (January 2023)
• Cybersecurity and Privacy – Trending Topics for Financial Institutions (September 2022)
• The New GLBA Safeguards Rule – What Financial Institutions Need to Know (November 2021)
• Breaking Down a Ransomware Attack: Recent Observations, How Ransom Negotiations Work, and What You Need to Know (October 2021)
• Crisis Communications During a Data Incident: Essentials for Your Organization (August 2021)
• Ransomware Attacks in 2021: How to Navigate the Evolving Threat Landscape (July 2021)
• Session Replay Technology and State Wiretap Class Actions: The Emerging Class Action Trend of 2021 (July 2021)
• An Overview of HIPAA Issues for Financial Institutions and Best Practices for Your Vendor Management Program (June 2021)
• Additional Incident Response Considerations – Protecting the Attorney-Client Privilege and Involving Your Board of Directors (May 2021)
• Incident Response: What You Need to Know (April 2021)
• Enterprise Cyber Risk Management for Financial Services Organizations (April 2021)
• How To Prepare for a Cybersecurity Incident (February 2021)
• Cybersecurity for Financial Institutions: Essential Information on Cyber Incidents and Regulatory Issues (November 2020)
• COVID-19: Cybersecurity and Data Privacy Considerations for Financial Institutions (April 2020)
• Coronavirus: Privacy, Security and Telehealth for Long Term Care Providers (March 2020)
• Coronavirus (COVID-19): What Your Business Should Do Right Now (March 2020)
• M&A and Cyber Risk: The Intersection Between Growth and Risk (May 2019)
• Cybersecurity and Data Privacy Essentials for Financial Service Providers (July 2018)
• Ransomware: Preparing for a Modern Threat to Patient Safety (June 2017)
• The Evolving Landscape of Data Privacy and Cybersecurity in the Financial Services Industry (January 2017)
• Financial Institutions and Data Breach Diligence (May 2016)

• Baker Donelson's Matthew G. White Earns AI Governance Professional Certification (April 9, 2025)
• Baker Donelson's Vivien F. Peaden and Alexandra P. Moylan Earn AI Governance Professional Certification (June 4, 2024)
• Baker Donelson's Aldo M. Leiva Appointed Vice Chair of ABA International Law Section's Cyber Committee (August 23, 2023)
• Baker Donelson Authorized as Top Tier Firm by NetDiligence^® for Data Security, Privacy, and Incident Response (December 5, 2022)
• Baker Donelson Corporate Attorney Justin S. Daniels Co-Authors Data Reimagined: Building Trust One Byte at a Time (October 11, 2022)
• Baker Donelson's Matt White Earns Certified Information Privacy Technologist Certification (August 30, 2022)
• Baker Donelson Continues to Expand Its Technology & Privacy Practice with Addition of Vivien F. Peaden in Atlanta Office (August 4, 2021)
• Baker Donelson's Alex Koskey Earns Payment Card Industry Professional Certification (May 17, 2021)
• Baker Donelson's Matt White Earns Payment Card Industry Professional Certification (March 22, 2021)
• Layna Cook Rush Named Chair of Baker Donelson's Data Incident Response Team (March 5, 2021)
• Baker Donelson Hosts Fifth Annual Cybersecurity Conference: Cybercon 2019 (September 19, 2019)

• Matt White Talks with Privacy Daily About Importance of Mapping Data to Comply with Tennessee Information Protection Act (June 30, 2025)
• Layna Cook Rush Comments on Proposed HIPAA Security Rule in For the Record (May 29, 2025)
• Justin Daniels Comments on Coinbase Data Breach Lawsuit in National Law Journal (May 14, 2025)
• Vivien Peaden Talks with Daily Report About Being Elected a Firm Shareholder (May 2, 2025)
• Allen Roberts Discusses Baker Donelson's AI Team in the Nashville Business Journal (January 21, 2025)
• Layna Rush Shares Best Practices for Responding to HIPAA Complaints in Healthcare Risk Management (September 1, 2024)
• Layna Rush Addresses Question of Sending Patient Records Via Unsecure Email in Part B News (August 12, 2024)
• Alisa Chestler Talks with Part B News About Fax Phishing Scams in Health Care (July 8, 2024)
• Layna Rush Comments in The Daily Upside on the Increasing Frequency and Costs of Hacks on Health Care Systems (June 23, 2024)
• Tom Barnard Comments on Escalation in False Claims Act Allegations in McKnights Long-Term Care News (February 26, 2024)
• Eve Cann Talks with Law360 About Firm's New Fort Lauderdale Office Space (January 26, 2024)
• Eve Cann Discusses Baker Donelson's Fort Lauderdale Office Move in South Florida Business Journal (January 23, 2024)
• Layna Rush Discusses What to Expect After a HIPAA Violation in Healthcare Risk Management (December 1, 2023)
• Layna Rush Comments on OCR's Security Risk Assessment Tool in Healthcare Risk Management (December 1, 2023)
• Matt White Discusses Use of AI Tools in Anti-Money Laundering Compliance in Global Association of Risk Professionals (November 10, 2023)
• Tom Barnard Profiled Among Maryland Daily Record's Veterans of Business & Law Honorees (November 10, 2023)
• Alisa Chestler Featured in MedTech Intelligence Q&A on Overcoming Barriers to EHR Adoption in Behavioral Health (November 8, 2023)
• Alex Koskey Comments on SEC's Cybersecurity Rules in Communications of the ACM (October 19, 2023)
• Alisa Chestler Featured on Healthcare IT News' HIMSS TV Discussing Behavioral Health Data Interoperability (October 18, 2023)
• Justin Daniels Discusses Role of Government in Privacy and Cyber Safety on Fox 5 DC (September 30, 2023)
• Alisa Chestler Discusses SEC Rules Regulating Cybersecurity in Nashville Post Q&A (September 5, 2023)
• Layna Rush Quoted in Healthcare Risk Management on How a Hospital Cyberattack Can Critically Affect Other Hospitals in the Community (September 1, 2023)
• Alisa Chestler Quoted in Part B News on Cybersecurity Challenges Facing Providers in the Wake of MOVEit Data Breach (August 21, 2023)
• Alisa Chestler Comments on New SEC Cybersecurity Incident Disclosure Rule in VentureBeat (August 7, 2023)
• Andy Droke Featured in Legaltech News Q&A on Launch of Firm's AI Team (July 27, 2023)
• Andy Droke Discusses Multidisciplinary Approach of Baker Donelson's AI Team in Daily Report (July 20, 2023)
• Law360 Highlights Baker Donelson's Launch of AI Team (July 20, 2023)
• Alisa Chestler Talks with Healthcare Risk Management About Impact of Proposed OCR Rule Involving Reproductive Privacy Rights on HIPAA Policies and Procedures (July 1, 2023)
• Alisa Chestler Discusses Protecting Enterprise Assets Against Cybersecurity Failures in InformationWeek (June 21, 2023)
• Matt White Comments on How Speed Complicates Real-Time Payment Anti-Fraud Protections in Global Association of Risk Professionals (June 16, 2023)
• Layna Rush Discusses Cyber Liability Insurance vs. Data Breach Insurance in CSO Magazine (June 14, 2023)
• Justin Daniels Talks with Commercial Carrier Journal About How Cybersecurity Risks Factor into Insurance Considerations for Autonomous Vehicles (May 16, 2023)
• In Commercial Factor Q&A, Alex Koskey and Matt White Discuss Risks and Rewards of Utilizing AI in Financial Services (April 20, 2023)
• Layna Rush Shares Best Practices for Cyberattack Response Planning in Healthcare Risk Management (April 1, 2023)
• Justin Daniels Discusses Importance of Cybersecurity in Business Exit Planning on GrowthTV Tech Series: Powering the Future of the Middle Market (February 10, 2023)
• Justin Daniels Quoted in The Drum on Need for Meaningful Legislative Change Around Data Privacy and Security (February 7, 2023)
• Justin Daniels Shares the Best Professional Advice He Ever Received on Middle Market Growth's GrowthTV (August 1, 2022)
• Justin Daniels Featured on Middle Market Growth's GrowthTV Discussing Importance of Cybersecurity in Exit Planning Process (July 11, 2022)
• Newly Elected Nashville Shareholders Bert Chollet, Andy Droke and Ryan Richards Featured in Nashville Post (April 18, 2022)
• Aldo Leiva Featured in Dairy Foods Magazine Offering Advice for Manufacturing Industry on Mitigating Cybersecurity Risk (April 5, 2022)
• In Q&A with Global Atlanta, Justin Daniels Outlines Why the Ukraine War is a Watershed Moment in U.S. Cyber Readiness (March 3, 2022)
• Justin Daniels Discusses SEC Push for More Transparency Related to Cybersecurity in Inc. (February 14, 2022)
• Justin Daniels Quoted in E-Crypto News on Potential Regulatory Issues for NFTs in 2022 (January 28, 2022)
• Layna Rush Comments in Tech Target on Impact of Potential Litigation and Regulatory Action from Data Breaches (January 20, 2022)
• Justin Daniels Offers His Perspective on NFT Industry Predictions for 2022 in App Developer Magazine (January 4, 2022)
• Layna Rush Quoted in Commercial Risk on Data Breach Response for the Vaccine Supply Chain (October 12, 2021)
• Aldo Leiva Discusses Impact of Session Replay Lawsuit Dismissal in Daily Business Review (September 14, 2021)
• Justin Daniels Discusses the Privacy and Security Risks of Connected Health Devices in Healthcare Info Security (August 23, 2021)
• Aldo Leiva Comments on Cuban-American Legal Community's Efforts to Help Cuban Activists in Daily Business Review (August 16, 2021)
• Aldo Leiva Quoted in Daily Business Review on Growth in Commercial Litigation Regarding Session Replay Software (August 12, 2021)
• Law360 Highlights Addition of Vivien Peaden to Firm's Privacy and Technology Practice (August 5, 2021)
• Justin Daniels Talks with Cybersecurity Insights About What Organizations Should Consider as They Face Ransomware (June 29, 2021)
• Aldo Leiva Featured on Dairy Foods Podcast Discussing Ransomware Threats (June 14, 2021)
• Thomas Barnard Profiled Among Maryland Daily Record's Leadership in Law Honorees (June 8, 2021)
• Layna Rush Discusses Whistleblower Exception That Allows Reporting HIPAA Violations with PHI in Healthcare Risk Management (May 14, 2021)
• Justin Daniels Featured in Cybersecurity Insights Fireside Chat on What's Broken with M&A Cybersecurity (April 26, 2021)
• Layna Cook Rush Quoted in PlanSponsor on Importance of Cybersecurity Incident Response Planning (March 22, 2021)