Genica/Geeks.com was in the news last month when they settled charges with the FTC concerning their database security. Less than two weeks later, they were notifying at least one state attorney general that they had identified yet more victims of the breach that occurred in 2007.
By letter dated February 16, 2009 to Maryland, Genica’s Chief of Security, Jerry Harken, reported (pdf) that they would be notifying those affected.
I hope they changed their consumer notification letter before they sent out, as the Feb. 16 2009 letter begins, “The purpose of this letter is to notify you that Genica dba Geeks.com (“Genica”) recently discovered on December 5, 2007 that information….. ”
Because this is all part of the same incident that the FTC investigated, no new charges are likely, but this incident does raise an eyebrow about how long it has taken Genica to determine the full scope of how many people were affected.