Internetnews.com references Lecturer in Law Jennifer Stisa Granick in an article about this year's Black Hat conference in Las Vegas:

Stanford Law School educator Jennifer Granick will discuss when a research can or cannot disclose vulnerability. As a very appropriate case in point she'll be talking about the 2005 Black Hat incident involving Cisco and researcher Michael Lynn where legal takedown threats and suits flew back and forth.