National Security & Digital Crimes

DOJ Settles False Claims Act Case with MORSECORP Over Cybersecurity Program

May 6, 2025 By Kim Peretti, Andrew Liebler, Lance Taubin and Andrew Rice

On March 26, 2025, the United States Department of Justice (DOJ) announced that it had reached an agreement with MORSECORP Inc. (MORSE) to settle alleged violations of the False Claims Act (FCA), specifically regarding MORSE’s cybersecurity program. The DOJ and MORSE—a government contractor that provides services to both the Departments of the Army and Air […]

2025 State Cybersecurity Legislation Focuses on Financial Services

April 18, 2025 By Kim Peretti

Eight years ago, on March 1, 2017, the New York Department of Financial Services enacted its landmark cybersecurity regulation covering financial services companies, 23 NYCRR Part 500, known as “Part 500.” Part 500 was the first state regulation to enumerate, in great detail, the elements of a cybersecurity program that a covered financial service company […]

DeepSeek Grabs Headlines – but Could it Be Unlawful by April? Considerations for Companies from recent US Data Regulations

January 29, 2025 By Daniel Felz

Late last week, a new generative AI large language model called DeepSeek was publicly launched by two Chinese entities, the Hangzhou and Beijing DeepSeek Artificial Intelligence Cos. Ltd. DeepSeek is currently driving headlines claiming it represents a “Sputnik moment“ in AI development. DeepSeek claims to perform at the same level as US-developed LLMs like […]

The D.C. Circuit’s TikTok Decision Could Portend Greater Regulation of Chinese-Owned Apps

December 10, 2024 By Privacy, Cyber & Data Strategy Team

On December 6, 2024, the United States Court of Appeals for the D.C. Circuit upheld the constitutionality of the Protecting Americans from Foreign Adversary Controlled Applications Act (“Act”). The Act, signed into law by President Biden on April 24, 2024, prohibits the “distribution or maintenance” in the U.S. of applications controlled by ByteDance, TikTok’s China-based […]

Congressional Research Service Report Sheds Light on October Telecommunications Attack by PRC-Linked Threat Actor

November 7, 2024 By Kim Peretti and Andrew Rice

In early October 2025, several media outlets reported that United States telecommunications services had been infiltrated by state affiliated threat actors linked to the People’s Republic of China (“PRC”). These reports were followed by a joint press release on October 25, 2024 by the Federal Bureau of Investigation (“FBI”) and the Cybersecurity and Infrastructure Security […]