Microsoft Hit With Securities Class Action for Overstating AI Prospects and Success

Plus "Shadow AI" triggers SEC Form 8-K filing for unauthorized AI use.

Good morning! Here’s what’s up.

Clips ✂️

Microsoft Hit with AI-Related Securities Suit

The emergence of artificial intelligence (AI) technology presents an enormous opportunity for many companies and indeed for commerce generally. It also presents an enormous challenge for companies trying to establish themselves as one of the winners in the AI scramble. Among the prominent companies involved in this scramble are several of the technology giants, including, for example, Microsoft, a company that, at least according to press reports, recently has faced some challenges with its AI product, Copilot.

Now, the company has been hit with a securities suit alleging the company overstated its AI prospects and success, while downplaying the difficulties it was facing. The complaint illustrates many of the important features of the still-emerging AI-related litigation. A copy of the June 12, 2026, complaint against Microsoft can be found here.

by The D & O Diary

👉 The June 12, 2026, complaint against Microsoft is here.


"Shadow AI" Triggers First SEC Form 8-K for Unauthorized AI Use: What Financial Institutions and Public Companies Need to Know

On May 5, 2026, a Pennsylvania-based regional bank, Community Bank, the wholly owned subsidiary of CB Financial Services, Inc. (CB), detected a cybersecurity incident caused by the use of an unauthorized AI application which exposed sensitive customer information. Unlike the usual cybersecurity incident involving an attack on the company's systems by a third-party bad actor or sabotage by an internal party, the exposure of confidential information in this case arose from the improper use of AI, presumably by a bank employee who turned to the unauthorized AI for efficiencies in handling customer information. Two days later, CB determined the incident was material and filed a Form 8-K under Item 1.05.

Notably, CB determined the incident to be material even though:

--It did not involve a disruption to Community Bank's operations, customer access to accounts or services, payment systems, or core information technology infrastructure.
--It was not expected to have a material impact on Community Bank's consolidated financial condition or results of operations.

by Wilson Sonsini Alert

👉 Article by Richard Blake, Demian Ahn and Joseph (Tony) Misher of Wilson Sonsini.


Exclusive: Binance set to lose permission to operate in EU, sources say

Binance, the world's largest crypto exchange, is set to ‌lose permission to serve European Union clients from next month because its licence application is about to be rejected, two people familiar with the matter told Reuters.
Under new EU rules, called MiCA, crypto firms have until the end of June to obtain a licence to allow ​them to keep servicing clients across the bloc. Binance's application, made to Greece's market regulator, is set to ​be turned down, the people said.

by Reuters: Business


Latest Associate Pay Raises Reflect Start of ‘Prestige Law’ Era

My own view is that the combination of pay raises and AI could be a good thing for associates. If junior associates are increasingly expensive and not immediately profitable because AI tools will do much of they used to do, firms will have more of an incentive to invest in young lawyers.

If an associate leaves their firm after only two or three years, the firm didn’t get a great return on its investment. So firms will want to give their associates positive experiences, encouraging them to stick around to the point of maximum profitability. Firms will also focus more on professional development and training: With AI handling more rote tasks, associates will be expected to do more sophisticated work earlier on in their careers.

Even if firms substantially reduce associate headcount, they’ll need at least some associates for a very long time. For starters, they need tech-savvy associates to operate and supervise AI tools—because when lawyers don’t review AI output, bad things happen.

And partners, whose necessity is undisputed, don’t just show up fully formed, like Athena from the head of Zeus.

“To have partners, you need to have associates, and to have senior and midlevel associates, you need to have junior associates,” said Zeughauser. “So someone has to hire first-years—because you need that pipeline.”

The first-year associates of today are the partners of tomorrow. Or put another way, those $40 million partners were once first-year associates.

by David Lat's Exclusive Jurisdiction


Cyberattacks Against Lawyers Are Growing More Sophisticated, Officials Warn

"You are no longer dealing in an age of the Nigerian Prince scam," Doss said. "Artificial intelligence models are currently being trained, for good and for bad, to make emails and other communications resemble exactly what you would expect."

The speakers described four threat scenarios based on FBI warnings and real insurance claims.

The first scenario involved the Silent Ransom Group, flagged by the FBI in 2025. This group sends fake invoices or account alerts to prompt callbacks. When the target responds, the criminals use the opportunity to deliver a malicious link or software, gaining remote access to the firm's systems.

The second scenario exploits two-factor authentication. Callers impersonate banks or vendors and pressure attorneys or staff into clicking links or sharing credentials, thereby intercepting authentication codes to reset passwords and access financial accounts.

The third scenario is a fake client scheme. A caller poses as a prospective client, agrees to any retainer, sends a check, and then quickly requests a refund before the check clears. This leaves the firm out of funds and exposes its bank routing and account numbers.

The fourth scenario, based on the 2025 California case Thomas v. Corbyn Restaurant Development Corp., involved criminals who spoofed a law firm's email address by altering two letters and redirected a $475,000 settlement wire to themselves. The defense firm, which missed several red flags, including a changed phone number and a switch from checks to wire payments, was held liable for the full amount under a court rule known as the imposter rule.

by Texas Lawyer

X