Jeffrey N. Rosenthal and David J. Oberly discuss how the Third Circuit offers defense attorneys a way to possibly get some data breach lawsuits dismissed. They write, in part: Taken together, Reilly and Horizon operate to create a diving line between circumstances where standing might exist in the Third Circuit. Under Horizon, standing can often be established where plaintiffs are…
Month: May 2020
PsyGenics notifies patients after discovering employee emailed patient info to her personal email account
Michigan-based PsyGenics, Inc. provides holistic mental health services to individuals diagnosed with intellectual and developmental disabilities. On March 25, during a routine security review, they discovered that an employee had emailed files to her personal email account on March 24 — and the spreadsheet contained patients protected health information: name, diagnosis code, appointment time, and…
REvil claims to have sold Trump-related material to unnamed buyer
The Sodinokibi/REvil ransomware team that attacked the entertainment law firm of Grubman Shire Meiselas & Sacks have certainly gotten media attention for this attack. In their first notice of the attack, they listed some of the celebrity clients, showed screenshots of some directory of files, and provided snippets from some celebrity-related files. But then negotiations…
Capital One Judge Skeptical That Breach Report Is Privileged
Law360 reports: A Virginia federal magistrate judge tackling discovery issues in the sprawling litigation over Capital One’s massive 2019 data breach appeared unconvinced during a hearing Friday morning that consumers suing the bank are barred from seeing a cybersecurity firm’s report on the event. Consumers within the multidistrict litigation are pushing to get hold of an incident…
RU: Payment portals leak the passport numbers of the tens of thousands of Muscovites ticketed for quarantine violations
Sourced from Kommersant, Meduza reports: Over the past two months, Moscow has issued tens of thousands of fines to local residents for violating the city’s coronavirus self-isolation restrictions. Thanks to weak cryptographic security, the personal data of those ticketed is now available online. The blog Nora Ezhika first drew attention to the data leak on May 12,…
FBI: ProLock ransomware gains access to victim networks via Qakbot infections
Catalin Cimpanu reports: The FBI has issued a security alert earlier this month about a new ransomware strain named ProLock that has been deployed in intrusions at healthcare organizations, government entities, financial institutions, and retail organizations. First spotted in March 2020, ProLock is part of the category of “human-operated ransomware.” Read more on ZDNet.