Cybersecurity Today Checkout.com Takes a Bold Stance, SolarWinds Case Dismissed, and FCC Reverses Mandate
Nov 24, 2025
Checkout.com takes a bold stand by refusing to pay ransom to Shiny Hunters, instead channeling funds into cybersecurity research. The SEC's dismissal of the SolarWinds case sparks a debate on CISO accountability. Meanwhile, the FCC's reversal of cybersecurity mandates raises eyebrows and questions about our national security. The discussion highlights the crucial role of policy in shaping cybersecurity and urges the tech community to get involved in crafting better regulations.
AI Snips
Chapters
Transcript
Episode notes
Company Refuses Ransom, Donates To Research
- Checkout.com refused to pay a ransom after Shiny Hunters stole data from a legacy third-party cloud system.
- The company donated the ransom funds to Oxford and Carnegie Mellon to support cybersecurity research instead of paying criminals.
Audit Legacy Systems And Rehearse Refusal
- Audit third-party integrations and retire legacy systems promptly to reduce exposure.
- In breach rehearsals, prepare for the option that refusing to pay the ransom may be the right call.
SolarWinds Dismissal Narrows Legal Precedent
- The SEC dismissed most claims against SolarWinds for treating cybersecurity like hindsight accounting.
- That outcome narrows legal exposure for CISOs but maintains pressure for accurate, timely disclosure about cyber risk.