In June 2021, DataBreaches reported that Vikas Singla had been indicted on charges relating to a 2018 cyberattack on Gwinnett Medical Center. At the time of the alleged attack, Singla was the chief operating officer of a metro-Atlanta network security company. He was charged with 18 counts of violating the Computer Fraud and Abuse Act (CFAA).
In April 2022, Singla’s counsel filed a number of motions to dismiss, each based on a different argument. One was based on lack of specificity. That argument seemed persuasive to Magistrate Judge Regina D. Cannon, who issued a non-final report recommending that the case be dismissed.
The non-final report and recommendation (21 pp., pdf) is now freely available on Recap.
The Northern District of Georgia has had a number of criminal cases that all involved or involve alleged violations of the CFAA. I wonder if any of the other active cases will try some of the same lack of specificity argument if the judge accepts the magistrate judge’s recommendation to dismiss the case against Singla for lack of specificity.
h/t, Law360.