the-docket

The Docket: DOJ Disrupts 3 Million IoT Devices Behind Record DDoS Attacks

DOJ takes down command infrastructure for four IoT botnets responsible for the largest DDoS attack in history at 31.4 Tbps.

The Docket: Eight-Month Notification Delays Are Not Anomalies Anymore

Three healthcare breaches announced the same week with similar delays. The notification timeline is the second vulnerability.

The Docket: Ubuntu's 30-Day Root Exploit Shows Why Patient Attackers Win

CVE-2026-3888 lets attackers wait 10-30 days for systemd cleanup, then hijack root. Security teams monitoring for fast attacks miss the slow burn.

The Docket: Okta Builds AI Agent Identity Management Before Someone Gets Sued

Okta just announced a framework for managing AI agent identities. Translation: companies are deploying agents without knowing who has access to what.

The Docket: Amazon Just Dodged €746M-Here's What Changed

Luxembourg court annuls record GDPR fine. If the biggest penalty in history gets thrown out, what does 'reasonable' compliance actually mean?

The Docket: DOJ cyber fraud is turning security controls into billing truth

DOJ is treating cyber compliance statements like money statements. If you sell to the government, your security program is now part of the invoice.

The Docket: Three Enforcement Signals Security Teams Should Not Ignore

Three small enforcement signals this week that tell you what courts and regulators are starting to treat as normal.