City of Columbus sues researcher for sharing leaked ransomware data


The City of Columbus, Ohio, has taken legal action against a security researcher who shared leaked data from a ransomware attack against the city with members of the news media.

A lawsuit filed last week alleges that the actions of software development consultant David Leroy Ross Jr., who also goes by Connor Goodwolf, risks “irreparable harm” to the city and its residents via the exposure of sensitive stolen data. The city alleges Ross downloaded the data from the dark web, after it was leaked by the Rhysida ransomware gang and “is threatening to share the City’s stolen data with third parties who would otherwise have no readily available means by which to obtain the City’s stolen data,” according to the complaint filed by Westley M. Phillips, the city’s lead attorney for civil litigation.

Read more…
Source: SC Media


Sign up for our Newsletter


Related:

  • Allstate sued for not reporting data breach of 165,000 New Yorkers

    March 10, 2025

    New York state sued Allstate on Monday, accusing the insurer’s National General unit of failing to report a data breach that exposed drivers’ license numbers, and not developing reasonable safeguards to protect policyholders’ private information. The lawsuit by New York Attorney General Letitia James was filed in a state court in Manhattan, and seeks civil fines. ...

  • Hacked health firm HCRG demanded journalist ‘take down’ data breach reporting, citing UK court order

    March 6, 2025

    A U.S.-based independent cybersecurity journalist has declined to comply with a U.K. court-ordered injunction that was sought following their reporting on a recent cyberattack at U.K. private healthcare giant HCRG. Law firm Pinsent Masons, which served the February 28 court order on behalf of HCRG, demanded that DataBreaches.net “take down” two articles that referenced the ransomware ...

  • Bank of Ireland to pay €350K over alleged data breach that saw woman stalked by her father

    March 5, 2025

    The High Court has ordered Bank of Ireland to pay a €350K settlement to a woman and her partner, who alleged her data was released to her estranged father, who then used it to find the couple abroad and stalk them. At the High Court today, Ms Justice Mary Rose Gearty was told the settlement, which ...

  • US state sues T-Mobile over 2021 data breach which leaked data of millions

    January 7, 2025

    As part of Washington’s lawsuit, the state claims T-Mobile failed to ‘adequately secure sensitive personal information of more than 2 million Washingtonians’. This failure, the state claims, left those consumers vulnerable to fraud and identity theft. The suit claims that the breach was ‘entirely avoidable’ and explains T-Mobile had years to fix key vulnerabilities in its ...

  • Pressure mounts on EU to use legal weapons against Musk’s interference

    January 7, 2025

    What are you waiting for, Brussels? Elon Musk’s decision to host German far-right leader Alice Weidel in a livestream on X is sparking fury from European Union leaders and lawmakers, who on Monday urged Brussels to deploy its full legal might to rein in the billionaire tech magnate. In response, the European Commission said the SpaceX ...

  • WhatsApp scores historic victory against NSO Group in long-running spyware hacking case

    December 23, 2024

    A U.S. judge has ruled that Israeli spyware maker NSO Group breached hacking laws by using WhatsApp to infect devices with its Pegasus spyware. In a historic ruling on Friday, a Northern California federal judge held NSO Group liable for targeting the devices of 1,400 WhatsApp users, violating state and federal hacking laws as well as ...