August 23, 2024 at 10:34AM
The US is suing Georgia Institute of Technology (Georgia Tech) and its contracting entity, Georgia Tech Research Corporation (GTRC), for alleged failures to meet Department of Defense cybersecurity standards. This includes issues with safeguarding controlled unclassified information and purportedly submitting a false cybersecurity assessment score. The university is also under scrutiny for its partnership with Tianjin University, with ties to the Chinese military.
From the meeting notes, it is clear that the US is suing Georgia Institute of Technology and its contracting entity, Georgia Tech Research Corporation, over alleged failures to meet cybersecurity standards set by the Department of Defense for contract awardees. The allegations include failure to protect controlled unclassified information (CUI), failure to develop and implement a cybersecurity plan that complied with DoD standards, and refusal to implement anti-malware solutions, among others.
The issue is being pursued under the False Claims Act as part of the Civil Cyber-Fraud Initiative, with US officials expressing concern about the potential risks to national security and the safety of defense personnel. The case involves a complaint-in-intervention filed by the US after announcing its intent to join the lawsuit against Georgia Tech and GTRC.
Furthermore, Georgia Tech is also the subject of a Congressional probe into its partnership with Tianjin University, which has ties to the Chinese military. This investigation was announced recently and is ongoing.
It’s important to note that the case with Georgia Tech is a first-of-its-kind being pursued as part of the Civil Cyber-Fraud Initiative, indicating its significance in addressing potential cybersecurity violations.
If there are any specific actions or follow-ups needed based on these meeting notes, please let me know.