The Nickel Report

Recent headlines underscore the security challenges faced by public-facing businesses. From physical threats to cyber attacks targeting a wide range of critical infrastructure, companies in diverse sectors, such as the financial, retail, entertainment, energy, transportation, real estate, communications and other areas, face a challenging landscape of risks and potential liabilities. Join us on October 28, 2019, at 12:00 p.m. EST, for a webinar to discuss these issues, including why companies should consider SAFETY Act protection and how to obtain it.

In this installment of our Inside Look series, Hunton partners Paul Tiao and Fred Eames discuss the challenges to businesses operating in a constantly evolving cyber threat landscape and steps some companies have taken to protect from attacks. It's important for companies operating in this space to adjust to changes to international, federal and state regulations regarding critical infrastructure and information sharing, including seeking application for a US SAFETY Act certification.

On October 18, 2018, the Federal Energy Regulatory Commission (Commission) held its October 2018 open meeting. Commissioner Chatterjee again assumed the gavel on behalf of Chairman McIntrye, who was absent for the second consecutive open meeting. McIntyre subsequently announced that he would step down from the chairmanship due to continuing health issues.

Highlights of the meeting follow:

On July 19, 2018, the Federal Energy Regulatory Commission (FERC or Commission) held its July 2018 open meeting. This meeting was Commissioner Powelson’s last, following his announcement on June 28, 2018, that he would be leaving the agency.

Highlights of the meeting include the following:

Recent press reports indicate that a cyber-attack disabled the third-party platform used by oil and gas pipeline company Energy Transfer Partners to exchange documents with other customers. Effects from the attack were largely confined because no other systems were impacted, including, most notably, industrial controls for critical infrastructure. However, the attack comes on the heels of a Federal Bureau of Investigation and Department of Homeland Security (“DHS”) alert warning of Russian attempts to use tactics including spearphishing, watering hole attacks, and credential gathering to target industrial control systems throughout critical infrastructure, as well as an indictment against Iranian nationals who used similar tactics to attack private, education, and government intuitions, including the Federal Energy Regulatory Commission (“FERC”). These incidents are raising questions about cybersecurity across the US pipeline network.