GitHub Named in Capital One Breach Lawsuit

  /     /     /  
Publicated : 23/11/2024   Category : security


GitHub Named in Capital One Breach Lawsuit


A new lawsuit says that GitHub bears responsibility for the Capital One breach because it actively encourages hacking and stored stolen data.



The fallout from the
Capital One data breach
continues, with a recent class-action lawsuit naming the financial giant — and GitHub, the online data repository that has become central to many companies agile and devops coding efforts.
The lawsuit, filed in US District Court for the Northern District of California, claims that GitHub (now owned by Microsoft) actively encourages hackers,  and that this active encouragement means that it has a higher responsibility than most repositories to scan uploaded files for dangerous or illicit data.
According to the lawsuit, files containing information on the methods used in the breach were uploaded to the site in April, but not removed until July, when GitHub was alerted by Capital One.
In a statement to Dark Reading, GitHub said, GitHub promptly investigates content, once its reported to us, and removes anything that violates our Terms of Service. The file posted on GitHub in this incident did not contain any Social Security numbers, bank account information, or any other reportedly stolen personal information. We received a request from Capital One to remove content containing information about the methods used to steal the data, which we took down promptly after receiving their request.
The suit is depending on a standard of morally culpable, as opposed to legally culpable, which is a commonly used legal standard. 
For more, read
here
and
here
.

Last News

▸ New threat discovered: Mobile phone ownership compromised. ◂
Discovered: 23/12/2024
Category: security

▸ Some DLP Products Vulnerable to Security Holes ◂
Discovered: 23/12/2024
Category: security

▸ Scan suggests Heartbleed patches may not have been successful. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
GitHub Named in Capital One Breach Lawsuit