Contact

Click here for a confidential contact or call:

1-212-350-2764

Cybersecurity and Data Breaches

This archive displays posts tagged as relevant to cybersecurity and data breach issues. You may also be interested in the following pages:

Page 1 of 3

Tech Whistleblowers Needed: Inquire Within

Posted  08/16/19
Facebook, Google, Samsung, Microsoft – we rely on large tech companies to safeguard our privacy and time and again they let us down. Yet tech companies are known to be highly selective employers, hiring the best and brightest and often paying better than companies in other industries. So how is it that they remain vulnerable to data breaches with such talent at their disposal? Cisco whistleblower James Glenn has...

Constantine Cannon Client’s Historic False Claims Act Settlement Against Cisco for Cybersecurity Fraud Makes Headlines

Posted  08/9/19
Numbers One and Zero for Coding with Word Hacked
If you’ve ever seen a heist movie, you likely know the scene. The technology-savvy member of a motley crew of criminals is huddled in a van or in a secret lair, surrounded by monitors. After a tense few minutes of maniacal typing, he or she yells “I’m in!” and hacks into the video surveillance system of the target hotel/casino/museum. In an instant, the cameras switch off or go to a pre-taped reel, and the...

Question of the Week — Should Companies Face Tougher Consequences for Cybersecurity Breaches?

Posted  08/8/19
Last month, a whistleblower represented by Constantine Cannon became the first person to win a False Claims Act settlement for cybersecurity fraud. The whistleblower, a former Cisco Systems employee, allegedly warned the company back in 2008 that its Video Surveillance Manager (VSM) system was highly vulnerable to attacks by hackers. The system’s flaws allegedly could have enabled hackers to delete video footage,...

August 1, 2019

The United States has settled with Cisco Systems, Inc. for $8.6 million in the first cybersecurity whistleblower case ever successfully brought under the False Claims Act.  Cisco was accused of selling a video surveillance software to the U.S. government – including the military, FEMA, Homeland Security, and the Secret Service -- that could be easily exploited by hackers, and doing nothing to resolve or report the issue for years after the vulnerability was identified.  AG NY; AG VA

Cisco Systems, Inc. – Government Contract Fraud/Non-Conforming Product ($8.6 million)

Constantine Cannon represented whistleblower James Glenn against Cisco in the first cybersecurity whistleblower case ever successfully resolved under the False Claims Act. Cisco Systems, Inc. agreed to an $8.6 million settlement to resolve allegations it knowingly sold vulnerable video surveillance software to federal, state and local government agencies, exposing government systems to the risk of unauthorized access and the manipulation of vital information. The whistleblower, who worked in Europe for a Cisco partner, had reported critical security vulnerabilities in the software to Cisco, but Cisco had continued to sell the technology to government entities, including the District of Columbia and 15 states, despite the fact that the software failed to comply with FAR procurement standards that require basic cybersecurity controls, including those set forth by the National Institute of Standards and Technology.  Read more: Press Release; Whistleblower Insider

Cisco Whistleblower Represented by Constantine Cannon Wins First-Ever False Claims Act Settlement for Cybersecurity Fraud

Posted  07/31/19
Cisco company sign
In the first cybersecurity whistleblower case ever successfully litigated under the False Claims Act, Cisco Systems, Inc. has agreed to an $8.6 million settlement to resolve allegations it knowingly sold vulnerable video surveillance software to federal, state and local government agencies, exposing government systems to the risk of unauthorized access and the manipulation of vital information. This qui tam...

July 22, 2019

Credit reporting company Equifax has agreed to pay up to $700 million to resolve claims related to its 2017 data breach in a global settlement with the FTC, the CFPB, and 50 U.S. states and territories.  The settlement will be entered as a stipulated judgment in civil action pending against Equifax, alleging that Equifax failed to take adequate steps to secure its network and consumer data, despite being warned of network vulnerabilities, resulting in a hack that exposed the private information of almost 150 million people.  The settlement provides that defendant will pay between $300 million and $425 million to compensate affected consumers, in addition to a $100 million penalty to the CFPB and $175 million to the states.  Equifax also agreed to take specified steps to improve information security, subject to review by an independent third party.  FTC; CFPB; AG CA; AG NY; AG PA

Blowing the Whistle on Data Breaches and Cybersecurity Flaws

Posted  06/14/19
Computer Security Profession Sitting at Her Computer Desk
With increasing dependence on technology, cybersecurity has emerged as a critical issue for customers, investors, and government regulators. Data breaches and other cybersecurity incidents can have devastating effects. In 2018, the Council of Economic Advisers estimated that malicious cyber activity cost the U.S. economy up to $109 billion dollars in 2016 alone. Typically, the public only learns of such flaws and...

Whistleblowers Needed to Stop Secret Kickbacks, Bribes, Overcharging, and False Costs in E-Rate, Lifeline, Connect America, and Rural Healthcare programs

Posted  06/7/19
By Jessica T. Moore
Large broadband cable bales awaiting installation on rural road.
The FCC disburses billions of dollars every year for its massive Universal Service Fund (USF) and its laudable mission to promote telephone and internet access to all U.S. persons regardless of income and location. This massive pot of government money attracts a commensurate measure of opportunists seeking to defraud these well-meaning programs.

What is the Universal Service Fund?

The Universal Service Fund...

May 23, 2019

Sixteen states have reached a settlement with the Medical Informatics Engineering and NoMoreClipboard, LLC, which have agreed to pay $900,000 to resolve allegations that the companies violated the Health Insurance Portability and Accountability Act (HIPAA), unfair and deceptive practice laws, notice of data breach statutes, and state personal information protection laws. The companies provide patient portals to healthcare providers, enabling patients to access their health records. Hackers allegedly infiltrated the companies' servers in May 2015, stealing the information of more than 3.9 million individuals. A consent judgment with specific compliance agreements was also entered by the court.  FL; NC
1 2 3

Newsletter

Subscribe to receive email updates from the Constantine Cannon blogs

Sign up for: