Today’s reminder is from a breach I came across in reviewing records obtained in response to a Freedom of Information Act request I filed. American Medical Response is a billing/collections agency. In the course of business, they routinely access a database maintained by Acxiom Insight. Apparently, login credentials of an inactive employee were never properly…
Month: August 2014
AU: City To Bay Fun Run: Hacker suspected of viewing personal details on website
ABC reports: Adelaide police are investigating whether someone hacked the City To Bay Fun Run website and took personal details. Part of the website has been taken offline and online entries suspended because of the possible security breach. The fun run committee said an unauthorised person might have viewed the names, email details and in…
Court to Notify Customers Who Shopped at Schnucks with a Credit or Debit Card That They May Be Eligible for Payments from a Class Action Settlement
A notification program is underway, as approved by the Circuit Court of the City of St. Louis, State of Missouri, to alert customers of Schnuck Markets, Inc. (“Schnucks”) that a Settlement has been reached in a class action lawsuit about a security breach that occurred between December 9, 2012 and March 30, 2013. Read more on Kansas City Business Journal.
UK: Estate agent data breach leaves customers open to ID theft
From the Information Commissioner’s Office: The Information Commissioner’s Office (ICO) has taken action after a London estate agent continued to leave papers containing personal information on the street despite a previous warning. On 11 December 2013, the ICO was informed that an outlet owned by Thamesview Estate Agents was leaving papers containing personal information in…
SEC failed to guard sensitive information
Kevin Cirilli reports: An internal government report obtained by The Hill says the Securities and Exchange Commission has failed to properly guard sensitive nonpublic information. [READ INSPECTOR GENERAL REPORT.] The report from the SEC’s Inspector General says the agency failed to clear the room during non-public executive session votes of the five-member board. It also…
Security breach in NIC, critical data at risk
Salkat Datta reports: A major security breach of the National Informatics Centre (NIC), which runs all the emails of senior officials and websites of all central government departments, allowed hackers to issue several fraudulent digital certificates, raising global concerns about India’s net security practices. The NIC is one of the select few authorised entities allowed…