Cybersecurity & Data Breach Response

Streamlined process developed from years of experience managing hundreds of security incidents and breaches, including business email compromises, system intrusions and ransomware attacks. 

We help clients 

• Comply with data breach notification requirements by industry and jurisdiction 
• Engage forensic experts for assessment, mitigation and ongoing fortification of information technology systems
• Communicate with affected parties, employees, the public, law enforcement and regulators 
• Conduct internal investigations and respond to government investigations 
• Defend related private and class action lawsuits 

Data breaches can impact any business. 

We’ve represented hundreds of clients across industry sectors, including:  

• Automotive
• Banking & Financial Services
• Consumer Products & Retail
• Education
• Energy & Utilities
• Health Care 
• Hospitality, Leisure & Travel 
• Manufacturing 
• Real Estate
• Technology 
• Transportation

How we work 

• Our team provides individual client attention and 24/7 service
• Our team customizes our approach to meet the needs of individual clients and move efficiently through the life cycle of an incident 
• Our team stays ahead of the curve and up to speed as technology and legal requirements change rapidly 
• Our team stays focused on swift recovery and damage control aggressively working the case from the first date of discovery to reduce the risk of media, regulatory and litigation fallout

Following is a selected sampling of matters and is provided for informational purposes only. Past success does not indicate the likelihood of success in any future matter.

• Discovery Counsel in a data breach MDL for a number of companies facing hundreds of putative class actions related to a large cyberattack with extensive concurrent federal, state, and congressional inquiries.  Our representation includes advising clients on all phases of discovery; handling the complex, large-scale review and production; 30(b)(6) deposition preparation and defense; and coordination with law enforcement.
• Counseled financial institution and payment processing vendor through all stages of  data breach incident involving the loss of sensitive customer data, including incident analysis and breach containment, incident disclosure (i.e., notification in compliance with all regulatory requirements), loss mitigation, and remediation customized to meet each client’s specific business and industry requirements.
• Counseled  major national retailer through a security incident investigation involving the discovery of malware potentially compromising all credit card processing of the company, compliance, risk assessment, and remediation.
• Counseled an international construction company and hotel portfolio management company through a breach investigation, response and notification involving the theft of employee W-2 tax information obtained as a result of phishing scheme.
• Counseled the domestic subsidiary of a major international company through a security incident investigation involving employee theft and misappropriation of customer credit card information.
• Counseled a small accounting firm through a data breach investigation involving the release of sensitive customer information to unauthorized recipients and customer notification.