GitHub Named in Capital One Breach LawsuitGitHub Named in Capital One Breach Lawsuit
A new lawsuit says that GitHub bears responsibility for the Capital One breach because it actively encourages hacking and stored stolen data.
August 14, 2019
The fallout from the Capital One data breach continues, with a recent class-action lawsuit naming the financial giant — and GitHub, the online data repository that has become central to many companies' agile and devops coding efforts.
The lawsuit, filed in US District Court for the Northern District of California, claims that GitHub (now owned by Microsoft) "actively encourages" hackers, and that this active encouragement means that it has a higher responsibility than most repositories to scan uploaded files for dangerous or illicit data.
According to the lawsuit, files containing information on the methods used in the breach were uploaded to the site in April, but not removed until July, when GitHub was alerted by Capital One.
In a statement to Dark Reading, GitHub said, "GitHub promptly investigates content, once it's reported to us, and removes anything that violates our Terms of Service. The file posted on GitHub in this incident did not contain any Social Security numbers, bank account information, or any other reportedly stolen personal information. We received a request from Capital One to remove content containing information about the methods used to steal the data, which we took down promptly after receiving their request."
The suit is depending on a standard of "morally culpable," as opposed to "legally culpable," which is a commonly used legal standard.
About the Author(s)
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication MethodsOct 26, 2023
Modern Supply Chain Security: Integrated, Interconnected, and Context-DrivenNov 06, 2023
How to Combat the Latest Cloud Security ThreatsNov 06, 2023
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
SecOps & DevSecOps in the CloudNov 06, 2023