Here’s a follow-up to a breach previously mentioned on this blog. Tyler Olsen reports: A Fraser Health spokesperson says an investigation into the discovery of private medical records on a local street concluded that Chilliwack General Hospital’s privacy policies are adequate and that the breach was caused by a single employee. In late September, a…
Month: February 2012
Data breach notification proposal placed on Senate calendar
Senator Feinstein’s proposed data breach notification law, Data Breach Notification Act of 2011 (S. 1408) has been placed on the Senate Legislative Calendar under General Orders. Calendar No. 310. The bill, which I have criticized in both its past and current incarnations is an incredibly weak bill that would provide little information to affected consumers, uses vague…
Data breach? Blame your third party’s remote access systems
Ellen Messmer reports: An in-depth study of data-breach problems last year where hackers infiltrated 312 businesses to grab gobs of mainly customer payment-card information found the primary way they got in was through third-party vendor remote-access applications or VPN for systems maintenance. “The majority of our analysis of data-breach investigations — 76% — revealed that the third-party responsible for…
IN: Computers stolen from government office had encryption in place
Daniel Miller reports that 10 laptops loaded with classified and personal information were swiped over the weekend from the Department of Child Services in Hendricks County, Indiana, but thankfully, they were encrypted. Read more on WISH.
Hackers Target Your Personal Info in DMV Database
Steven Dial reports from South Carolina: Hackers are trying to steal personal information from the DMV database and most of them are from another country. “It is cause for alarm for us and our information technology folks,” said JR Sanderson. Since January hackers have tried to get into the DMV database more than 100 times….
AU: St George distributes client emails
Leonie Lamont reports: St George Margin Lending services has shared the email addresses of some 500 of its clients with other clients in a mass email sent out by the bank. A copy of the email, in which the addresses are contained, was sent to BusinessDay by one client. ‘‘Big privacy screw-up: It lists 500…