Connor Jones reports: A vulnerability analyst and prominent member of the infosec industry has blasted Microsoft for refusing to look at a bug report unless he submitted a video alongside a written explanation. Senior principal vulnerability analyst Will Dormann said last week he contacted Microsoft Security Response Center (MSRC) with a clear description of the…
DOGE Staffer Broke Treasury Rules Transmitting Personal Data
Gregory Korte and Erik Larson report: A staffer for the Department of Government Efficiency violated Treasury Department policies when he sent a spreadsheet containing personal information to two other people in the Trump administration, a federal official revealed in a court filing Friday. That DOGE staffer was Marko Elez, who left his job tracking Treasury…
Courts Are Still Willing To Dismiss Data Breach Lawsuits for Lack of Standing
Raika Casey and Alexis Opper of BakerHostetler write: In data breach litigation, courts generally find plaintiffs have standing such that their complaints may proceed past the pleading stage when it is alleged that sensitive information was impacted and there is an allegation of dark web exposure, misuse or fraud. However, a few courts have recently…
FCC proposes new cybersecurity mandates for submarine cable operators in major rule review, seeks public input
Industrial Cyber reports: The U.S. Federal Communications Commission (FCC) is conducting its first comprehensive review of submarine cable rules since 2001 to enhance the protection of the nation’s submarine cable infrastructure amid evolving national security concerns. The review also proposes that all applicants for cable landing licenses and licensees submitting periodic reports must certify that they have…
Appellate court upholds sentence for former Uber cyber executive Joe Sullivan
Jonathan Greig reports: The conviction of former Uber chief security officer Joe Sullivan on obstruction of justice charges was upheld by the U.S. Court of Appeals for the Ninth Circuit in California this week after the cybersecurity expert disputed several aspects of his sentence and charges. Sullivan was given three years probation by a U.S….
Dual Russian And Israeli National Extradited To The United States For His Role In The LockBit Ransomware Conspiracy
From the U.S. Attorney’s Office, District of New Jersey, an update on the case involving an alleged dev for LockBit: NEWARK, N.J. – A dual Russian and Israeli national was extradited to the United States on charges that he was a developer of the LockBit ransomware group, United States Attorney John Giordano announced. In August,…