DOJ joins compliance officers in lawsuit over Georgia Tech cyber lapses
By 
Aaron Nicodemus2024-08-26T14:37:00
The Department of Justice (DOJ) joined a whistleblower lawsuit filed by two former Georgia Tech compliance officers who alleged that the institute violated the False Claims Act by knowingly failing to meet cybersecurity requirements in a Department of Defense contract.
The DOJ’s complaint, filed Thursday in U.S. District Court for the Northern District of Georgia, alleged that Georgia Institute of Technology (Georgia Tech) and Georgia Tech Research Corp. (GTRC) failed to fully implement cybersecurity controls required by DoD regulations for its contracts.
The DOJ joined a whistleblower complaint filed by two senior members of Georgia Tech’s cybersecurity compliance team, Christopher Craig and Kyle Koza, under the qui tam provisions of the False Claims Act, the DOJ said in a press release.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
PremiumNavigating compliance: A guide for small teams to tackle CMMC
Many small organizations within the Defense Industrial Base are struggling to meet the rigorous requirements validated through the Cybersecurity Maturity Model Certification, writes Thomas Graham, CISO at Redspin. If you haven’t been tracking it closely, CMMC was finalized in October, with an effective date of December 16, 2024.
-
News BriefDOJ fines MORSE Corp $4.6M for lax cyber controls amid crack down on federal contractors
Yet another government contractor has been slapped with a fine by the Department of Justice for applying lax cybersecurity defenses on sensitive government data.
-
News BriefGovernment contractor fined $307K after third-party hack compromised personal data
It was a double whammy of cybersecurity no-nos for a federal contractor hit with a data breach: The personal data of Medicare beneficiaries contained in unencrypted screenshots were allegedly compromised when their third-party vendor’s server was hacked.
More from Regulatory Enforcement
-
News BriefFRC fines PwC, auditor combined $4.1M over 2019 work of Wyelands Bank
The U.K. Financial Reporting Council issued penalties against PwC and a former auditor over deficiencies on work related to the 2019 financial statements of now shuttered Wyelands Bank.
-
News BriefEU regulator questions 'culture of compliance' with Digital Markets Act at Apple, Google
The European Commission released its preliminary findings last week regarding Apple and Google not complying with the Digital Markets Act. It issued orders to both companies regarding their business practice and plans to release all of its findings next week.
-
News BriefTreasury reversal of OFAC sanctions against Tornado Cash signals eroding AML scrutiny
The U.S. Treasury Department lifted its sanctions against cryptocurrency mixer Tornado Cash on Friday after a federal appeals court ruled in November the penalty levied by the agency’s Office of Foreign Assets Control was an overreach.