
In what seems is likely to be the last cybersecurity-related enforcement action by the SEC under outgoing chair Gary Gensler, the agency has brought a settled enforcement action against asset management firm Ashford, Inc., alleging that the company made misrepresentations in its periodic reporting documents about a cybersecurity-related incident at the firm. As discussed below, the action raises questions about what may come next as far as SEC cybersecurity-related enforcement under the new administration. A copy of the SEC’s January 13, 2025, complaint in the enforcement action can be found here. The SEC’s January 13, 2025, press release about the action can be found here.Continue Reading SEC Files Cyber Disclosure Enforcement Action Against Asset Manager


A recurring question – one that I am getting now on just about a daily basis – arises from concerns about the Trump administration’s possible impact on the world of directors’ and officers’ liability. Implicit in the question is the assumption that the new administration’s policies and actions will indeed affect D&O claims. While I agree with this assumption – that the new administration’s actions will have an impact–at this point it is still far too early to tell what that impact might be. For now, I think all we can do is watch some key indicators. In this blog post, I review what I think are the key indicators, and what the indicators may tell us about what lies ahead for D&O claims.