Articles Posted in Cybersecurity

On March 1, 2024 the Department of Commerce’s Bureau of Industry and Security (BIS) issued an Advance Notice of Proposed Rulemaking (ANPRM) seeking public comment on regulations that aim to reduce the national security risks from connected vehicles (CVs) that incorporate technology from countries of concern, including the People’s Republic of China (China).

Published on: November 8, 2023

DaVinci Payments Settlement with OFAC Reveals Critical Compliance Lessons

By Aaron R. Hutman, Matthew R. Rabinowitz, Samantha Franks and Erin Kwiatkowski

Aaron R. Hutman

Samantha Franks

Erin Kwiatkowski

On November 6, 2023, the U.S. Department of Treasury’s Office of Foreign Assets Control (OFAC) announced a $206,213 settlement with Swift Prepaid Solutions, Inc. d/b/a daVinci Payments (daVinci) for apparent violations of sanctions regarding Crimea, Iran, Syria and Cuba. The financial services and payments firm was penalized by OFAC for enabling prepaid reward cards to be redeemed by persons who purchased the cards from sanctioned jurisdictions.

The November 6 settlement reflects a growing trend in OFAC enforcement actions to emphasize the importance of geolocation and blocking for financial and web services companies.

Published on: July 12, 2023

Unveiling the New European Economic Security Strategy

By Nancy A. Fischer, Steven Farmer and Iris Karaman

Steven Farmer

Iris Karaman

The EU’s new Joint Communication on a European Economic Security Strategy proposes a methodology for an EU economic security risk assessment and identifies measures to mitigate these risks. The Strategy is noteworthy because it offers a comprehensive view of the EU’s overarching strategy for multiple existing or proposed new EU legislative and policy tools including export controls, FDI screening and domestic investment in critical technology through the EU’s own proposed Chips Act, and how these tools would work together to reduce EU economic security risks. It also signals the EU’s intention to align more closely with the U.S. regarding China, including with respect to reducing supply chain dependencies and new tools like outbound investment controls.

(This is the second post of a three-part series on U.S., UK and EU alignment on economic security strategy.)

Published on: June 28, 2023

New U.S. – UK Economic Partnership Declaration

By Nancy A. Fischer, Steven Farmer and Iris Karaman

Steven Farmer

Iris Karaman

On June 8, 2023, the United States and the United Kingdom announced the Atlantic Declaration for a Twenty-First Century U.S.-UK Economic Partnership (“Declaration”). The Declaration reaffirms the need to adapt and reimagine the unique alliance between the two countries. From critical and emerging technologies to digital transformation, clean energy, and defense collaboration, businesses can leverage the partnership to exploit new trans-Atlantic opportunities.

(This is the first post of a three-part series on U.S., UK and EU alignment on economic security strategy.)

Published on: October 21, 2021

Commerce Imposes New Export Controls on Cybersecurity Items and Adds a Corresponding License Exception

By Christopher R. Wall, Stephan E. Becker, Nancy A. Fischer, Aaron R. Hutman, Benjamin J. Cote, Matthew R. Rabinowitz and Zachary C. Rozen

Zachary C. Rozen

On October 21, 2021, the U.S. Department of Commerce, Bureau of Industry and Security (BIS) announced an interim final rule (Interim Rule), which will amend the Export Administration Regulations (EAR) to add controls for the export, reexport and transfer of certain cybersecurity exploitation, intrusion and monitoring tools. The Interim Rule also creates a new License Exception “Authorized Cybersecurity Exports (ACE)” that authorizes certain exports, reexports and transfers of cybersecurity items, as described in more detail below. The Interim Rule will be made effective 90 days after publication, on January 19, 2022.

Published on: June 15, 2017

Senate Bill Expands Sanctions on Russia and Iran

By Christopher R. Wall, Aaron R. Hutman, Matthew Oresman and Taylor Stoneman

On June 15, 2017, the Senate passed the Countering Iran’s Destabilizing Activities Act of 2017 (S.722) by a vote of 98-2. Included with the bill is a significant Russia sanctions amendment, the Countering Russian Influence in Europe and Eurasia Act of 2017, which would expand U.S. primary and secondary sanctions for Russia and limit the President’s ability to ease existing sanctions.

The bill represents a bi-partisan compromise among key legislators to advance Iran and Russia sanctions measures together. The House of Representatives is now beginning to consider its own Iran and Russia sanctions measure, with the potential for final legislation this fall. Continue reading →

Published on: January 5, 2016

OFAC Rings in the New Year with More Details on its Cyber Sanctions Program

By Nancy A. Fischer, Brian E. Finch, Aaron R. Hutman and Matthew R. Rabinowitz

Brian E. Finch

Aaron R. Hutman

On December 31, 2015, the Office of Foreign Assets Control (OFAC) issued regulations which codify and provide further details on the cybersecurity sanction program introduced on April 1, 2015 under Executive Order (E.O.) 13694. While the Obama administration still has yet to make its first designations under the new program, it will be one to watch in 2016 given the high profile and geo-political challenges of cybercrime.