Capital One to Hand Over Mandiant's Forensic Data Breach Report
A judge in the U.S. District Court of the Eastern District of Virginia has ruled that Capital One must allow plaintiffs to review a cybersecurity firm’s forensic report related to the bank’s 2019 data breach. Capital One sought to keep the report private on the grounds that it is a protected legal document.
According to a Cyberscoopreport, attorneys suing Capital One on behalf of customers could review a copy of an incident response report to prepare for a possible trial. U.S. Magistrate Judge John Anderson said the report, prepared by Mandiant, was the result of a business agreement, and that the legal doctrine argument was “unpersuasive,” notes Cyberscoop.