From the Information Commissioner’s Office: The Information Commissioner’s Office (ICO) has ordered the Council of the Isle of Scilly to implement new data protection policies and training after two data breaches involving the disclosure of personal data. The first breach occurred in June 2013 when an attachment inadvertently included in an email revealed personal data…
Month: September 2014
AL: Flowers Hospital employee indicted for stealing patient info for tax refund fraud scheme
An update to this insider breach at Flowers Hospital in Alabama. The breach, reported in April, has already resulted in a potential class action lawsuit, which the hospital has moved the court to dismiss. In today’s development, Ken Curtis reports: A Henry County man has been indicted on charges he sold personal information of patients…
In Wake of Confirmed Breach at Home Depot, Banks See Spike in PIN Debit Card Fraud
Brian Krebs reports: Nearly a week after this blog first reported signs that Home Depot was battling a major security incident, the company has acknowledged that it suffered a credit and debit card breach involving its U.S. and Canadian stores dating back to April 2014. Home Depot was quick to assure customers and banks that no debit card PIN data was…
HIV Status, Homosexuality no Reason for Anonymity, Judge
Sabrina Canfield reports: An HIV-positive homosexual who sued his employer for discrimination cannot do so anonymously because his HIV-positive, homosexual status provides him “no greater threat of retaliation” than a typical plaintiff alleging employment violations, a federal judge ruled. John Doe asked the court to keep his own name out of a lawsuit he filed…
Yandy notifies online customers of breach
If you purchased lingerie or other items from Phoenix-based Yandy.com, you may be getting a breach notification. Yandy reports that they became aware of the breach on August 18, and it involved customers’ names, postal and email addresses, card numbers, expiration dates, and CVV codes. Although the notification letter, signed only by “The Yandy Team,” does…
NCQA spots – and stops – ecommerce breach quickly
How quickly can your organization detect and stop a breach? It looks like the National Committee for Quality Assurance (NCQA) caught one pretty quickly, as it only affected customers making online purchases on September 3 between 2 am and 10 am. They called those affected, and by September 5, were sending out letters to those…