David Lashway and John Woods have joined as partners in Sidley Austin LLP's cybersecurity and privacy practice in Washington, D.C. 

Lashway and Woods join the firm from Baker McKenzie, where they started and led the global cybersecurity practice group for over 10 years.

David Lashway is a leading lawyer for crisis management, national security, cybersecurity, misinformation, trade secret theft, and related investigation and disputes matters. He has advised private and public organizations on significant and material cybersecurity incidents across almost every critical infrastructure sector.

Lashway has significant experience in addressing election security and misinformation-related issues, and was deeply involved in the investigations into the 2016 and 2020 elections targeting various U.S. political parties. He has served as the lead lawyer advising on the legal response on operationally impactful malware for a number of Fortune 500 entities, and led the incident response, associated investigations and litigations for several companies impacted by the NotPetya malware incident and recent large-scale ransomware incidents.

John Woods is a leader in handling cybersecurity matters, data governance, trade secret theft, and related investigation and disputes matters. He is one of the few lawyers who has led multiple global responses to data integrity attacks involving the financial services industry. 

Woods also served as the lead lawyer advising a Fortune 500 entity on the legal response on the NotPetya malware incident in 2017, and advised a number of other organizations on the response to ransomware and data extortion claims. As a counselor, based on his experience in handling data integrity and operationally impactful malware incidents, he is sought out for his advice in the areas of cyber resilience and data governance.