Law360 reports: A Virginia federal magistrate judge tackling discovery issues in the sprawling litigation over Capital One’s massive 2019 data breach appeared unconvinced during a hearing Friday morning that consumers suing the bank are barred from seeing a cybersecurity firm’s report on the event. Consumers within the multidistrict litigation are pushing to get hold of an incident…
RU: Payment portals leak the passport numbers of the tens of thousands of Muscovites ticketed for quarantine violations
Sourced from Kommersant, Meduza reports: Over the past two months, Moscow has issued tens of thousands of fines to local residents for violating the city’s coronavirus self-isolation restrictions. Thanks to weak cryptographic security, the personal data of those ticketed is now available online. The blog Nora Ezhika first drew attention to the data leak on May 12,…
FBI: ProLock ransomware gains access to victim networks via Qakbot infections
Catalin Cimpanu reports: The FBI has issued a security alert earlier this month about a new ransomware strain named ProLock that has been deployed in intrusions at healthcare organizations, government entities, financial institutions, and retail organizations. First spotted in March 2020, ProLock is part of the category of “human-operated ransomware.” Read more on ZDNet.
Edison Mail rolls back update after iOS users reported they could see strangers’ emails
Kim Lyons reports: Edison Mail has rolled back a software update that apparently let some users of its iOS app see emails from strangers’ accounts. Several Edison users contacted The Verge to report seeing the glitch after they applied the update, which was meant to allow users to sync data across devices. Reader Matthew Grzybowski said after…
Data breach in new Illinois online unemployment system exposes private information
Jamie Munks reports: A glitch in a newly launched state system for processing unemployment claims for gig workers publicly exposed personal information, a spokeswoman for Democratic Gov. J.B. Pritzker said Sunday. The Illinois Department of Employment Security “is aware there was a glitch” in a new system for processing unemployment claims for independent contractors and…
REvil responds to Grubman Shire law firm: “We will get the money”
A ransomware team that locked up the files of entertainment law firm Grubman Shire Meiselas & Sacks after stealing copies of the files has responded to reactions to their demand for $42 million to unlock the files and to prevent the attackers from releasing the firm’s files about President Trump. The attackers claim that the…