The City of Columbus, Ohio, has taken legal action against a security researcher who shared leaked data from a ransomware attack against the city with members of the news media.
A lawsuit filed last week alleges that the actions of software development consultant David Leroy Ross Jr., who also goes by Connor Goodwolf, risks “irreparable harm” to the city and its residents via the exposure of sensitive stolen data. The city alleges Ross downloaded the data from the dark web, after it was leaked by the Rhysida ransomware gang and “is threatening to share the City’s stolen data with third parties who would otherwise have no readily available means by which to obtain the City’s stolen data,” according to the complaint filed by Westley M. Phillips, the city’s lead attorney for civil litigation.
Read more…
Source: SC Media
Related:
- Data of 3 billion people exposed in one of the largest data breaches in history
August 11, 2024
The personal data of over 2.9 billion people has been exposed in what could be one of the largest data breaches in history. The data breach affected Jerico Pictures Inc., better known as National Public Data (NPD,) which is a background check company that allows its customers to search billions of records with instant results. According ...
- Cash App to award $15M to users in security breach settlement
August 11, 2024
Cash App users could get some cash sent to their bank accounts soon. In a settlement, the mobile payment service was ordered to pay out $15 million in damages. According to a class-action lawsuit obtained by USA TODAY, plaintiffs sued Cash App Investing and Block Inc. for the companies’ “failure to exercise reasonable care in securing ...
- Google Illegally Acted As A Search Monopoly, Judge Rules In Major Case
August 5, 2024
A federal judge ruled on Monday Google violated antitrust laws in a bid to maintain a monopoly with its search engine—a major loss for Google, capping off the latest antitrust case brought against a U.S. tech giant. D.C.-based Judge Amit Mehta wrote “Google is a monopolist” and “has acted as one to maintain its monopoly,” in ...
- Optus and Medibank Data Breach Cases Allege Cyber Security Failures
August 2, 2024
2022 was a big year for cyber security breaches in Australia. Both telecommunications provider Optus and private health insurer Medibank suffered large-scale data breaches affecting tens of millions of Australians, leading to heightened regulatory and business focus on cyber security in the years since. The two data breaches also led to legal action, with recent court ...
- CrowdStrike is sued by shareholders over huge software outage
August 1, 2024
CrowdStrike has been sued by shareholders who said the cybersecurity company defrauded them by concealing how its inadequate software testing could cause the July 19 global outage that crashed more than 8 million computers. In a proposed class action filed on Tuesday night in the Austin, Texas federal court, shareholders said they learned that CrowdStrike’s assurances ...
- Law firm Kirkland sued in class action over MOVEit data breach
June 10, 2024
U.S. law firm Kirkland & Ellis, the world’s largest law firm by revenue, has been pulled into U.S. litigation over a wide-ranging data breach linked to a file transfer tool that compromised data at hundreds of organizations. A proposed class action, opens new tab filed on Friday accused Kirkland and several other companies, including health insurer ...