Julian Hattem reports: New draft legislation to protect people after their data may have been stolen is running into some quick opposition on Capitol Hill. Mere hours after Reps. Peter Welch (D-Vt.) and Marsha Blackburn (R-Tenn.) unveiled their Data Security and Breach Notification Act on Thursday, a pair of key House Democrats is calling it a non-starter….
Month: March 2015
Miami Resident Sentenced In Identity Theft Tax Fraud Scheme Involving Medical Patients’ Personal Identifying Information
There’s a follow-up to a breach previously reported on PHIprivacy.net. The U.S. Attorney’s Office for the Southern District of Florida reports that Kenol Augustin, 36, was sentenced to 16 months in prison, followed by two years of supervised release, and was ordered to pay joint and several restitution of $57,000, for his role in the tax refund…
Talos Discovery Spotlight: Hundreds of Thousands of Google Apps Domains’ Private WHOIS Information Disclosed
Nick Biasini, Alex Chiu, Jaeson Schultz, and Craig Williams write: In mid-2013, a problem occurred that slowly began unmasking the hidden registration information for owners’ domains that had opted into WHOIS privacy protection. These domains all appear to be registered via Google App [1], using eNom as a registrar. At the time of writing this…
US hacking accused Lauri Love ‘had stolen government data’
BBC reports: A British man accused of hacking into US government software networks had a computer that appeared to have “stolen” information on it, a court heard. Lauri Love, 30, of Suffolk, who faces no charges in the UK, is seeking the return of machines seized by police. But, at Bury St Edmunds Magistrates’ Court,…
OR: Mosaic Medical notifies patients of breach
Mosaic Medical is notifying patients of a breach after an office burglary, even though they have no evidence anything was actually stolen. Here is their statement, as posted by KTVZ: On the morning of Thursday, January 15, 2015 we discovered that an overnight break-in had occurred at the Health Information Technology (HIT) department. At the time…
KHNP hacker demands money to withhold documents
WNN reports: A hacker who launched a cyber attack on Korea Hydro and Nuclear Power (KHNP) last December has released more files and demanded money in return for not exchanging sensitive information with third countries. From 15 December a group calling itself ‘Who am I = No nuclear power’ began releasing information it obtained from…