All news

JLCW · 2026 · §DISPATCH

Disrupting the syndicate: ransomware-as-a-service takedowns and the reach of law-enforcement operations

A series of coordinated international operations against ransomware-as-a-service infrastructure has again demonstrated both the promise and the limits of law-enforcement disruption as a counter-ransomware strategy. By s…

JLCW Research DeskJune 30, 2026
JLCW · 2026 · §DISPATCH

State responsibility returns to the fore as nations trade cyber accusations

A fresh round of public attributions this spring — several routed through joint government advisories rather than press releases — has pushed the old question of state responsibility back to the center of the cyber-law…

JLCW Staff WritersJune 24, 2026
JLCW · 2026 · §DISPATCH

Software liability debate sharpens as SBOM mandates take hold

By: Kate Fazzini

Kate FazziniJune 9, 2026
JLCW · 2026 · §DISPATCH

The clock starts on CMMC: enforcement and the defense industrial base's compliance reckoning

As Cybersecurity Maturity Model Certification requirements phase into defense contracts through 2026, the defense industrial base is confronting the transition from aspirational cybersecurity guidance to enforceable con…

JLCW Staff WritersMay 19, 2026
JLCW · 2026 · §DISPATCH

Agencies race to inventory cryptography ahead of post-quantum deadlines

With migration timelines to post-quantum cryptography now firmly on the calendar, federal agencies and their vendors are in the unglamorous phase of the work: discovering where, exactly, vulnerable public-key cryptograp…

JLCW Staff WritersMay 14, 2026
JLCW · 2026 · §DISPATCH

Synthetic media and the ballot: election-integrity law heading into the 2026 midterms

With the 2026 U.S. midterms approaching, state legislatures and election administrators are racing to finalize rules governing AI-generated audio and video in political communications. A patchwork of state statutes now…

Kate FazziniApril 22, 2026
JLCW · 2026 · §DISPATCH

Cyber insurance war-exclusion clauses face renewed scrutiny

By: Kate Fazzini

Kate FazziniMarch 31, 2026
JLCW · 2026 · §DISPATCH

Commercial spyware controls tighten as transparency gaps persist

The multinational effort to rein in the commercial spyware market entered a more demanding phase this winter, as governments that signed on to earlier joint principles began translating them into export controls, visa r…

JLCW Staff WritersFebruary 18, 2026
JLCW · 2026 · §DISPATCH

When the defender is an algorithm: liability and command responsibility for autonomous cyber-defense agents

As enterprises and defense agencies increasingly deploy AI agents that detect, triage, and actively counter intrusions without a human in the loop, a difficult legal question has moved from the seminar room to the opera…

JLCW Staff WritersFebruary 11, 2026
JLCW · 2026 · §DISPATCH

After the framework: data sovereignty, localization mandates, and the next transatlantic transfer regime

Cross-border data flows entered 2026 under renewed legal strain, as multinational firms confront a widening gap between the promise of stable transatlantic transfer mechanisms and the reality of proliferating data-local…

JLCW Research DeskJanuary 28, 2026
JLCW · 2026 · §DISPATCH

FY2026 NDAA carries a heavy cyber agenda into law

By: Kate Fazzini

Kate FazziniJanuary 13, 2026
JLCW · 2025 · §DISPATCH

Undersea cable incidents expose gaps in the law of critical infrastructure

A series of damaged submarine cables over the past year has drawn new attention to the thin legal protections around the physical backbone of the internet — and to how hard it is to distinguish accident from deliberate…

JLCW Staff WritersNovember 19, 2025
JLCW · 2025 · §DISPATCH

The state privacy patchwork hardens into an interstate compliance maze

By late 2025, roughly two dozen states had enacted comprehensive consumer privacy laws, and a fresh wave took effect during the year, deepening a compliance environment that businesses increasingly describe as unmanagea…

JLCW Research DeskNovember 18, 2025
JLCW · 2025 · §DISPATCH

Healthcare ransomware renews calls for critical-infrastructure standards

By: Kate Fazzini

Kate FazziniSeptember 23, 2025
JLCW · 2025 · §DISPATCH

OFAC sanctions test the legal reach against ransomware's enablers

The Treasury Department's Office of Foreign Assets Control continued through 2025 to expand its use of sanctions against the infrastructure that makes ransomware profitable, designating cryptocurrency exchanges, mixing…

JLCW Staff WritersSeptember 16, 2025
JLCW · 2025 · §DISPATCH

Autonomy in cyber operations tests the limits of existing law

As militaries fold more automation into both cyber defense and offense, legal scholars are asking whether accountability rules built for human decision-making can survive contact with machine-speed operations.

JLCW Staff WritersJuly 15, 2025
JLCW · 2025 · §DISPATCH

CIRCIA's reporting rule tests the limits of mandatory incident disclosure

The rulemaking to implement the Cyber Incident Reporting for Critical Infrastructure Act, known as CIRCIA, remained one of the most consequential and contested cyber-policy processes of 2025. Enacted in 2022, the statut…

JLCW Staff WritersJune 17, 2025
JLCW · 2025 · §DISPATCH

EU Cyber Resilience Act enforcement begins to bite

By: Kate Fazzini

Kate FazziniMay 6, 2025
JLCW · 2025 · §DISPATCH

Water utilities under siege renew the fight over ICS oversight

A run of intrusions into water and wastewater industrial control systems has kept critical-infrastructure defenders on alert through 2025, reviving a regulatory fight that has simmered for years. Small and mid-sized uti…

JLCW Research DeskApril 22, 2025
JLCW · 2025 · §DISPATCH

UN cybercrime convention splits experts over surveillance risks

As governments weigh signature and ratification of the UN cybercrime convention, the treaty has become a flashpoint between the goal of cross-border cooperation and fears that its broad reach could legitimize surveillan…

JLCW Staff WritersMarch 11, 2025
JLCW · 2025 · §DISPATCH

The SEC's cyber disclosure rule meets its materiality reckoning

More than a year after the Securities and Exchange Commission's cybersecurity incident-disclosure rule took full effect, 2025 opened with the market still struggling to define its central term. The rule requires public…

JLCW Staff WritersFebruary 18, 2025
JLCW · 2025 · §DISPATCH

Telecom breach fallout drives a reckoning on network security duties

By: Kate Fazzini

Kate FazziniJanuary 21, 2025
JLCW · 2024 · §DISPATCH

Defense contractor teams up with Microsoft to develop battlefield technology

Defense contractor Anduril Industries announced earlier this month it reached an agreement with Microsoft to develop cybernetic enhancements for soldiers in remote, dangerous locations.

Kate FazziniNovember 8, 2024
JLCW · 2024 · §DISPATCH

Navy’s college Cyber Resiliency Challenge sees George Mason, USF on top

This week, the Naval Surface Warfare Center Dahlgren Division held its Cyber Resiliency and Measurement Challenge, a yearly event meant to highlight upcoming talent at universities with cyber warfare curricula.

Kate FazziniNovember 8, 2024
JLCW · 2024 · §DISPATCH

Anniversary of China tech ban: what JLCW experts say about contracting and the role of the enterprise

By: Kate Fazzini

Kate FazziniNovember 7, 2024