An Opening Salvo for Cybersecurity FCA Cases
Client Alert | 1 min read | 08.06.19
On July 31, 2019, Cisco Systems agreed to pay $8.6 million to settle allegations in United States ex rel Glenn, et al v. Cisco Systems, Inc. that the company violated the False Claims Act (FCA) by selling video surveillance systems to state and federal agencies that contained software flaws enabling those agencies to be hacked. An employee of one of Cisco’s resellers filed the suit in 2011 after discovering the alleged security weakness that could permit a cyber intruder to obtain administrative access to the software that managed video feeds.
The cybersecurity specialist alleged in his complaint that the company violated the FCA by (1) failing to inform government agencies that the software did not comply with the standards imposed by the Federal Information Security Management Act (FISMA) and (2) by providing a product that was worthless due to the security flaws in the software. Although this settlement marks the first time that a cybersecurity related qui tam has ended in a recovery through a settlement or judgment, it appears to be a sign of the times. As more such cases—alleging noncompliance with the DFARS Safeguarding Rule or FedRAMP requirements— are investigated and proceed through the courts, Glenn could be the first of many such recoveries.
Contacts
Insights
Client Alert | 13 min read | 06.12.26
The EU Cyber Resilience Act (CRA) is an EU product cybersecurity law for connected products (formally, “products with digital elements” under the CRA) commercialized in the EU; it entered into force on 10 December 2024, with direct application across the EU. Full application begins 11 December 2027, but one of its most operationally demanding provisions takes effect in just under 100 days, on 11 September 2026: the mandatory vulnerability and incident reporting under Article 14 CRA.
Client Alert | 6 min read | 06.11.26
CMS Announces New Medicaid Eligibility Requirements: Implications for Managed Care Plans
Client Alert | 7 min read | 06.11.26
Qatar Rewrites the Playbook: What the New Public M&A Rules Mean for Market Participants
Client Alert | 6 min read | 06.09.26
Is Stock-a-palooza Over? Supreme Court allows SEC to Pursue Disgorgement


