Susan Jacobson reports: A clerk at an Orlando Victoria’s Secret outlet store used a skimmer to steal tourists’ credit-card information and then sell it, federal prosecutors allege. Between Nov. 29 and April 3, the woman hid the skimmer under her skirt at Orlando Premium Outlets on International Drive and swiped customers’ cards before running them through the cash register,…
Month: April 2014
Half to one third of personal data in Bulgaria ‘completely compromised’
The Sofia Globe reports: The scandal in Bulgaria about illicit use of personal data by some political parties to file election registration applications has highlighted the lack of security of official personal identity numbers. Such numbers, commonly known by their Bulgarian abbreviation as EGNs, can be found on the internet, such as on lists of…
KR: Customer data stolen from NongHyup Life by subcontractor employees
Is there anyone left in South Korea who hasn’t had their information leaked by now? Sheesh. Yonhap News reports: Subcontracted employees were found to have taken some 350,000 pieces of private data belonging to customers from a local life insurance firm that hid the leak for months from authorities, the financial watchdog said Wednesday, just…
MN: Militia commander with Fort Bragg ties admits to ID theft
fayobserver.com reports that Keith Michael Novak has pleaded guilty to identity theft in a scheme that involved stealing the identity information from members of his former Army unit at Fort Bragg. He reportedly planned to use their identity information to make fake IDs for members of his militia, the 44th Spatha Libertas. Novak was an…
Your medical files may be at risk
Patricia Kime reports: After veteran Aaron Alexis shot and killed a dozen people at the Washington Navy Yard last September, the Air Force noted a spike in the number of personnel dipping into his electronic medical file. The snooping — illegal under the Health Insurance Portability and Accountability Act, or HIPAA — was so pervasive…
Iowa amends data breach law to cover paper records and to create central reporting
Mark Wolski of Bloomberg BNA reports: April 8 –Iowa Gov. Terry Branstad (R) recently signed legislation (S.F. 2259) that amends the state’s data breach notification law to require covered entities to notify the state attorney general of breaches affecting more than 500 Iowans. Under the measure, covered entities must notify the attorney general within five…