Category Archives: class action lawsuit

Facebook rejects new allegation that it protected employees over users in 2018 breach

Posted on by

A class-action lawsuit over a 2018 breach of Facebook has another wrinkle: A new court filing reveals allegations that the social media company moved to protect its own employees from the exploited vulnerability while keeping users in the dark. Facebook called the allegation, made public Thursday, “absolutely false.” The plaintiffs’ claim centers on the company’s handling of a problem with the “access token” that lets people into their profiles without having to log in every time they visit Facebook. “Facebook knew about the access token vulnerability and failed to fix it for years, despite that knowledge,” says the court filing in the U.S. District Court for the Northern District of California. “Even more egregiously, Facebook took steps to protect its own employees from the security risk, but not the vast majority of its users.” A vulnerability in Facebook’s code allowed an attacker to steal the tokens. Facebook disclosed the breach last September, initially saying 50 million accounts were affected before […]

The post Facebook rejects new allegation that it protected employees over users in 2018 breach appeared first on CyberScoop.

Continue reading Facebook rejects new allegation that it protected employees over users in 2018 breach

My info was in the Capital One breach. What should I do?

Posted on by

While the security world focuses on the aftermath of the Capital One data breach, the majority of those impacted by the incident are left with one big question: What do I do? The amount of information taken from the bank’s system is extensive: names, addresses, zip and postal codes, phone numbers, email addresses, dates of birth and self-reported income on 100 million U.S. residents. Social Security numbers and bank account numbers were also pulled from Capital One’s cloud computing infrastructure. If you’ve gotten notice that your information was part of the breach, there are steps that you can take to protect yourself. How do I freeze my credit? Freezing your credit is one of the safest things you can do if you believe you are susceptible to identity theft due to a data breach. By instituting a freeze, any business trying to run a credit check, which is often necessary to open a […]

The post My info was in the Capital One breach. What should I do? appeared first on CyberScoop.

Continue reading My info was in the Capital One breach. What should I do?

Intel faces 32 class action suits stemming from Spectre and Meltdown

Posted on by

Intel is fighting 32 class action lawsuits related to major security vulnerabilities in its chips that were disclosed in January, the company said in an annual filing with to the Securities and Exchange Commission on Friday. The filing says that as of Feb. 15, there are 30 class action lawsuits on behalf of customers and two on behalf of shareholders, all resulting from the nature of the disclosure of Meltdown and Spectre. About six months elapsed from the flaws’ discovery in June until their public disclosure. The company says the lawsuits are filed in U.S. federal and state courts and in some cases courts in other countries. Meltdown and Spectre are deep-rooted flaws in computer central processing units that can allow hackers to steal sensitive information undetected. The flaws are present in CPU chips dating back to the mid-1990s. The customer lawsuits “generally claim to have been harmed by Intel’s actions and/or […]

The post Intel faces 32 class action suits stemming from Spectre and Meltdown appeared first on Cyberscoop.

Continue reading Intel faces 32 class action suits stemming from Spectre and Meltdown

Allscripts faces lawsuit after ransomware attack impacts doctors’ offices across U.S.

Posted on by

Billion-dollar American health care company Allscripts faces a lawsuit for failing to secure systems and data after it was crippled by a SamSam ransomware attack earlier this month. The lawsuit was filed in Illinois by the Florida-based Surfside Non-Surgical Orthopedics on behalf of all clients affected by the incident.  The company, which provides health care IT solutions like health record and practice management as well as electronic prescription services, was first hit by ransomware on Jan. 18. It took more than a week to fully recover. In that time, the lawsuit alleges, patient records were out of reach, business and care was interrupted and revenue was lost. “Allscripts was aware, however, that at all times pertinent hereto, that deficiencies in its product and services could result in privacy and security vulnerability or compromises and failed to take adequate measures to protect against any such event,” the lawsuit charges. The plaintiffs then point to a […]

The post Allscripts faces lawsuit after ransomware attack impacts doctors’ offices across U.S. appeared first on Cyberscoop.

Continue reading Allscripts faces lawsuit after ransomware attack impacts doctors’ offices across U.S.

Supreme Court May Decide Data Breach Victims’ Rights

Posted on by

The U.S. Supreme Court may decide whether you can act on that “Dear valued customer, we regret to inform you that your data may have been compromised …” letter or e-mail with an individual or class action lawsuit. Right now, courts around the country d… Continue reading Supreme Court May Decide Data Breach Victims’ Rights