Another state has reported a breach or leak involving a state portal for filing unemployment claims. Fox19 reports: Kentucky officials reported Thursday what Gov. Andy Beshear described as a “data breach” in the state’s unemployment insurance web portal. The so-called breach took place on April 23, according to a release from Kentucky’s Education and Workforce…
AU: Big Footy data breach exposed private details of up to 100,000 users
Fiona Wilan reports: A large data leak from an AFL fan website has exposed about 70 million records online, including private conversations between users, according to cyber security researchers. Aussie Rules forum Bigfooty.com has about 100,000 users – although it’s not known how many were affected. The site has now started to contact users to notify them…
Minneapolis city systems temporarily brought down by cyberattack
Maggie Miller reports: City government systems in Minneapolis were temporarily brought down by a cyberattack early Thursday at the same time the city was grappling with raging protests over the police killing of George Floyd. A spokesperson for the city told The Hill that some of the city’s public websites and systems were temporarily shut down…
Capital One Must Turn Over Mandiant’s Forensics Report
Jeremy Kirk reports: Capital One has been ordered by a federal judge to turn over the results of a digital forensics investigation into its 2019 data breach, which has been sought by plaintiffs in a class-action lawsuit. The report could provide further insight into what went wrong in one of the most significant breaches of…
Vermont Updates its Data Breach Notification Law
Joseph J. Lazzarotti, Jason C. Gavejian, Mary T. Costigan and Maya Atrakchi of JacksonLewis write: As the COVID-19 pandemic presses on, privacy and security matters continue to be at the forefront for federal and state legislature. We recently reported that Washington D.C. updated its data breach notification law. Now, the Vermont legislature also amended its data breach…
FTC Approves Settlement with Canadian Lockmaker Over Deceptive Security Claims
Hunton Andrews Kurth writes: We previously posted about the Tapplock, Inc. (“Tapplock”) settlement with the Federal Trade Commission (“FTC”) over allegations that the company violated Section 5 of the FTC Act by falsely claiming that its “smart locks” were secure. Earlier this month, the FTC voted 5-0 to approve the settlement. Tapplock sells fingerprint-enabled, internet-connected padlocks that…