DOJ orders consultants to pay $11.3M total for cyber rule violations
By 
Adrianne Appel2024-06-18T19:49:00
Guidehouse and Nan McKay and Associates will pay a total of $11.3 million to the Department of Justice (DOJ) to settle allegations that cybersecurity failures led to the theft of client personal information during the height of the COVID-19 pandemic.
Guidehouse agreed to pay about $7.6 million, while NM agreed to pay $3.7 million, the DOJ announced in a press release Monday.
The case resolved claims brought under the qui tam provisions of the False Claims Act by Elevation 33, an entity owned by a former Guidehouse employee. The former employee will receive about $1.9 million of the settlement.
Related articles
-
News BriefDOJ fines MORSE Corp $4.6M for lax cyber controls amid crack down on federal contractors
Yet another government contractor has been slapped with a fine by the Department of Justice for applying lax cybersecurity defenses on sensitive government data.
-
News BriefSEC orders R.R. Donnelley to pay $2.1M over cyber-related control violations
A business communications and marketing services company agreed to pay more than $2 million to settle charges levied by the Securities and Exchange Commission over cybersecurity-related control violations.
-
News BriefNYDFS offers cyber rule compliance template for small businesses
The New York State Department of Financial Services issued guidance for small businesses attempting to comply with its cybersecurity regulations.
More from Regulatory Enforcement
-
News BriefHong Kong securities regulator hits repeat offender Deutsche Bank with $3M fine
Deutsche Bank has agreed to pay a $3 million fine and has returned $5 million in fee overcharges to customers as part of a resolution with Hong Kong’s financial services regulator.
-
News BriefDOJ, SEC charge owner of Pennsylvania companies of running $770M Ponzi scheme
The majority owner of a Pennsylvania investment firm faces 100 years of prison time and huge fines for allegedly running a $770 million Ponzi scheme centered on an ATM company he also owned.
-
ArticleDisney hit with $10M FTC fine for allegedly collecting children’s data
The Federal Trade Commission (FTC) proposed an enforcement action against Disney for allegedly collecting personal information about children, and then threw salt in the wound by calling the company out in an alert emailed to an untold number of businesses.