Fraudulent Data Breach Disclosures Target VRChat in Maine

A misinformation campaign has led to the submission of fake data breach notifications to Maine's breach portal, including a false report from VRChat claiming a breach affecting 2.4 million users. VRChat confirmed that the notification was fraudulent, stating that no data was compromised and the employee cited does not exist. The Maine Attorney General's Office acknowledged that submissions to the breach portal are not verified before posting. Another suspicious notification allegedly from Discord was also flagged, claiming a breach affecting 10 million users. VRChat is currently working with the Attorney General's office to remove the fraudulent entry. The incident highlights vulnerabilities in the breach reporting process, allowing anyone to submit claims without verification.

Key Points: • VRChat confirmed a fraudulent data breach notification affecting 2.4 million users. • Maine's breach portal allows unverified submissions, leading to misinformation. • VRChat is collaborating with the Maine Attorney General's office to address the issue.