Maggie Miller reports: City government systems in Minneapolis were temporarily brought down by a cyberattack early Thursday at the same time the city was grappling with raging protests over the police killing of George Floyd. A spokesperson for the city told The Hill that some of the city’s public websites and systems were temporarily shut down…
Capital One Must Turn Over Mandiant’s Forensics Report
Jeremy Kirk reports: Capital One has been ordered by a federal judge to turn over the results of a digital forensics investigation into its 2019 data breach, which has been sought by plaintiffs in a class-action lawsuit. The report could provide further insight into what went wrong in one of the most significant breaches of…
Vermont Updates its Data Breach Notification Law
Joseph J. Lazzarotti, Jason C. Gavejian, Mary T. Costigan and Maya Atrakchi of JacksonLewis write: As the COVID-19 pandemic presses on, privacy and security matters continue to be at the forefront for federal and state legislature. We recently reported that Washington D.C. updated its data breach notification law. Now, the Vermont legislature also amended its data breach…
FTC Approves Settlement with Canadian Lockmaker Over Deceptive Security Claims
Hunton Andrews Kurth writes: We previously posted about the Tapplock, Inc. (“Tapplock”) settlement with the Federal Trade Commission (“FTC”) over allegations that the company violated Section 5 of the FTC Act by falsely claiming that its “smart locks” were secure. Earlier this month, the FTC voted 5-0 to approve the settlement. Tapplock sells fingerprint-enabled, internet-connected padlocks that…
Personal Details and IDs of Millions of Indian Families Exposed As A Result of Security Incident
Bob Diachenko writes: On May 23rd, another Elasticsearch misconfiguration incident has led to the exposure of the personal details and Aadhar number for millions of families registered under Mukhya Mantri Parivar Samridhi Yojana (MMPSY), which is one of the largest social security programme in India rolled out in the state of Haryana. According to Bob, the server…
U.S. Accuses Russian Military Hackers of Attack on Email Servers
Julian E. Barnes and David E. Sanger report: The National Security Agency publicly accused Russian government hackers of targeting email servers around the world in an unusual announcement on Thursday, showing that the agency is becoming more aggressive in calling out Moscow’s action as the presidential election approaches. While the Trump administration has publicly attributed…