Lawsuit Filed Against Github In Wake Of Capital One Data Breach
Arthur T Knackerbracket has found the following story:
The law firm Tycko & Zavareei LLP filed the lawsuit on Thursday, arguing that GitHub and Capital One demonstrated negligence in their response to the breach.
The firm filed the class-action complaint on behalf of those impacted by the breach, alleging that both companies failed to protect customer data.
Personal information for tens of millions of customers was exposed after a firewall misconfiguration in an Amazon cloud storage service used by Capital One was exploited.
[...] "As a result of GitHub's failure to monitor, remove, or otherwise recognize and act upon obviously-hacked data that was displayed, disclosed, and used on or by GitHub and its website, the Personal Information sat on GitHub.com for nearly three months," the law firm alleged in its complaint against GitHub and Capital One.
The firm also alleged that computer logs "demonstrate that Capital One knew or should have known" about the data breach when it occurred in March, and criticized Capital One for not taking action to respond to the breach until last month.
Previously:
Capital One Target of Massive Data Breach
The Technical Side of the Capital One AWS Security Breach
Read more of this story at SoylentNews.