March 6, 2020

This week's Weekly Debrief covers DoJ's new non-binding guide for internet cyber research, how to write an effective infosec policy, DoppelPaymer ransomware in the aerospace industry, the crypto panel at RSA, Ring dinged for its privacy policy, and a possible DC data breach bill.


March 3, 2020

Yesterday, our sister blog, GovConJudicata, launched the GovConJudicata Podcast!

The GovConJudicata Podcast provides listeners with an audio experience for news, insights, and legal analysis covering a variety of issues in the government contracting space, including cybersecurity and related compliance issues.

You can find the podcast on GovConJudicata and at

In addition, you can also find the GovConJudicata Podcast on Spotify and on iTunes (comin...

February 28, 2020

This week's Weekly Debrief covers a number of topics, including how industry can help the FBI identify cybercriminals, data breach at Clearview AI, a Maryland court ruling with cyber insurance implications, NY data security law, and proposed Federal data privacy legislation.


February 21, 2020

Today, the National Institute of Standards and Technology ("NIST") published Special Publication 800-171, Revision 2, Protecting Controlled Unclassified Information (CUI) in Nonfederal Systems and Organizations.

According to the press release, NIST SP 800-171 Rev. 2 contains only minor editorial changes and does not change any of the basic and derived security requirements under the framework:

Revision 2 provides minor editorial changes in Chapters One and Two, and in the Glossary, Acronyms, and R...

February 21, 2020

This week's Weekly Debrief covers a lot of interesting topics spanning cyber and privacy, including the MGM breach, DHS warning industry following pipeline ransomware incident, commentary on malware's new age, CCPA, and wearable privacy tech.


  • ZDNet –​ Cybersecurity: Hacking victims are uncovering cyberattacks faster - and GDPR is the reason why

    • ​"The amount of time hackers spend inside the networks of compromised organisations before being uncovered has massively dec...

February 14, 2020

This week's Weekly Debrief covers a variety of topics, including CISA's election security role, lessons learned from the Equifax breach, Huawei charged with stealing trade secrets, phishing, a Senate bill that would create a US data protection agency, and a Federal privacy bill might be around the corner.


February 14, 2020

Yesterday, the U.S. Court of Federal Claims granted Amazon Web Services, Inc.'s ("AWS") Motion for Temporary Restraining Order and Preliminary Injunction in its bid protest against the Department of Defense's ("DOD") Joint Enterprise Defense Infrastructure ("JEDI") $10 billion cloud contract to Microsoft Corporation.  

The injunction prevents DoD from awarding any task orders to Microsoft under the JEDI contract until COFC lifts the injunction.  Though filed under seal, COFC provided initial...

February 12, 2020

On February 4, 2020, the National Institute of Standards and Technology ("NIST") issued a pre-draft call for comments to Special Publication 800-161r1, Supply Chain Risk Management Practices for Federal Information Systems and Organizations.

Since its publication in 2015, there have been many changes in the laws, regulations, tools, and technologies related to supply chain risk management.  To that end, in consistent with past updates, NIST: 

seeks the input of SP 800-161 stakeholders to...

February 7, 2020

This week's Weekly Debrief covers several interesting topics, including NIST's draft guidelines related to ransomware, data exfiltration via screen brightness, CCPA and privacy laws, and commentary on why hacking must be included in digital privacy policy.


February 1, 2020

This week's Weekly Debrief covers a variety of issues, including the Wawa data breach, a Maryland judge's ruling on an insurance case regarding IT damages, ransomware targeting ICS and a US government contractor, Clearview AI, and building compliant data privacy systems.

Data Breach

Please reload

About CyberJudicata

Welcome to CyberJudicata an informational blog/website focusing on cybersecurity and privacy issues, including cyber policy, data breach, incident response, data security, regulatory compliance, and cyber insurance.

CyberJudicata is published by Joshua Duvall, managing partner at Matross Edwards, a law firm providing government contracts and cybersecurity legal services to small and mid-sized businesses.

Contact Matross Edwards


Search By Tags
  • Matross Edwards
  • LinkedIn
  • Twitter

Copyright © 2020 Joshua B. Duvall. All rights reserved.

CyberJudicata™ #cyberjudicata

LegalJudicata™ #legaljudicata

GovConJudicata™ #govconjudicata