Blog
The New York Times Sues OpenAI: The Copyright Case That Could Define AI Training
The New York Times' lawsuit against OpenAI and Microsoft turns AI training data provenance, fair use, and output risk into a very expensive conversation.
Read moreEU AI Act Trilogue Complete: The Final Text and What It Means
The EU institutions have reached political agreement on the AI Act, and the first comprehensive AI law in the world is now moving from theory to enforcement.
Read moreThe Bletchley Declaration: 28 Nations Agree on AI Safety (But Not on How)
The Bletchley Declaration is a real signal that AI safety has gone global, but the hard part is still turning shared concern into enforceable rules.
Read moreBiden's AI Executive Order: The Most Comprehensive Federal AI Action to Date
Executive Order 14110 turns AI policy into a real compliance agenda, with federal demands on safety testing, watermarking, privacy, and civil rights.
Read moreMGM Resorts Hacked: Social Engineering Still Beats Technical Controls
MGM Resorts’ September 2023 cyber incident is a reminder that the easiest path into a hardened environment is often a human with a phone and a reset button.
Read moreHashiCorp Goes BSL: What the Terraform License Change Means for Your Infrastructure
HashiCorp's move to BSL 1.1 for Terraform and other core products changes the rules for vendors, integrators, and anyone packaging infrastructure tooling commercially.
Read moreSEC Adopts Cybersecurity Disclosure Rules: 4-Day Incident Reporting Begins
The SEC's new cyber rules turn incident response into a filing deadline problem, and the 4-business-day clock starts at materiality.
Read moreThe EU AI Act Passes Parliament: What US Companies Should Start Preparing Now
The European Parliament's June 14 vote signals that AI governance is moving from theory to enforcement, and U.S. companies need to get their house in order now.
Read moreMeta's EUR 1.2 Billion Fine: The End of Unchecked Transatlantic Data Flows
The Irish DPC's record fine against Meta is a reminder that cross-border data flows need more than SCCs, more than supplementary measures, and definitely more than hope.
Read moreThe Samsung ChatGPT Leak: Why Every Company Needs an AI Acceptable Use Policy
Samsung’s ChatGPT leak is a blunt reminder that without an AI acceptable use policy, employees will paste confidential data into whatever tool seems helpful.
Read moreThe State of SBOMs in 2022
From Executive Order 14028 through NIST guidance and a lobbied-out NDAA, we traced the regulatory arc of software bills of materials through 2022 — a year where SBOMs moved from mandate to contested territory.
Read more
VC Valuation Methods
The methods behind valuations used in venture capital are a breed unlike the [operational valuations](/blog/valuation-101/) we’ve discussed in our prior posts.
Read more