Hello. Texas state lawmakers this week passed legislation governing the use of artificial intelligence, forging ahead as the federal government seeks to block state-level AI regulation.

The Texas bill, which now goes to Gov. Greg Abbott, aims to boost the state’s data-privacy protections, among other measures. Also this week, more than 250 lawmakers from all 50 states voiced “strong opposition” to a measure tucked into the Trump administration’s budget megabill that would impose a 10-year ban on state AI laws, in a letter to members of the House and Senate. Read our story. 

More news:  

• OpenAI says China has tried to use ChatGPT for cyber threats 
• German telecom company Vodafone fined $81 million for fraud, privacy and security violations
• Rubrik beats revenue targets 
• Cellebrite to buy Corellium 

Plus: I recommend a piece of weekend reading on the painful recollections of Maersk's former tech chief from dealing with the 2017 NotPetya scourge.   

German telecom company Vodafone drew a fine of $51 million from the country's data watchdog for privacy and cyber missteps. Vodafone business partners scammed customers into signing fake contracts, the watchdog said. It assessed another $30 million fine for not properly securing its app and customer-service processes, which allowed hackers to steal customer eSIM data. (Bleeping Computer)

👉 Weekend reading: Remember the NotPetya ransomware attack of 2017? The global spread of that particularly damaging malware marked a turning point in how businesses perceived the hacker threat, from both the victim's and cyber insurer's points of view. Worldwide shipper Maersk was harder hit than many companies. Former Global Group Chief Technology and Information Officer Adam Banks recalls some of the more painful moments and resonant lessons in InfoSecurity Magazine. 

• Rubrik on Thursday reported first-quarter revenue of $278.5 million, up 49% from $187.3 million for the same period a year ago. The company narrowed its net loss for the quarter to $102.1 million from $732.1 million a year ago. For the full year, Rubrik forecast revenue of $1.18 billion to $1.19 billion. 

• Forensic investigation company Cellebrite said it plans to buy virtualization tech provider Corellium. Both companies focus on figuring out what is on mobile and internet-connected devices, including identifying vulnerabilities. The deal is valued at $200 million. 

• Morgan Stanley has built its own AI tool to help modernize its legacy code—something it says existing tools on the market still struggle with.
• After last year’s relative calm, U.S. companies are now dealing with rising logistics costs, supply-chain upheaval and uncertain consumer demand.
• Private equity is feeling the heat as buyout fund backers look for cash returns while firms hold tens of thousands of unsold companies.

The WSJ Pro Cybersecurity team is Deputy Bureau Chief Kim S. Nash and reporters Angus Loten, James Rundle and Catherine Stupp. Follow us on X @WSJCyber. Reach the team by replying to any newsletter you receive or by emailing Kim at kim.nash@wsj.com.