Well, sort of. One of the reasons internet-of-things botnets have gotten so huge and the underlying devices are so insecure is because the DMCA makes “company unapproved” modifications to their underlying systems a prosecutable breach of copyright. On the one hand, this prohibits people from, say, “overclocking” cars and circumventing safety and emissions standards. On the other, it also prevents most security research.
The good news is a two year “research exemption” is now in effect, finally allowing for academic hacking of IoT systems. Which, yanno. Given IoT botnets have demonstrably taken down large chunks of internet infrastructure in the past couple of months alone, is probably not before time.
Also, nothing makes me feel ancient like reading that the DMCA is a “decades-old law”. Ouch.