The recent proposals around software liability, including the Cyber Resilience Act (CRA) in Europe and the National Cybersecurity Strategy (NCS) in the US, have sparked debates about accountability, especially among the open-source community. Supporters believe that liability could enhance security practices, directly holding companies responsible for insecure software. However, critics argue that such proposals oversimplify the complexity of cybersecurity and may hinder innovation. To address these concerns, policymakers must determine what constitutes a reasonable level of security and how much liability should cost.
100 MILLION Americans in UnitedHealth PII Breach
UnitedHealth confirmed that February’s ransomware attack impacted 100 million people, the largest healthcare data breach in the US. Health insurance, health, billing, and personal information
