Joseph Cox reports: On Thursday, it emerged that an outsourcing company named Capegemini had left a database containing sensitive information on the open internet, exposing the names, contact details, resumes, and other personal information of potentially millions of people who used a global recruiting firm. The episode highlights the lingering problem of organizations accidentally leaving…
Month: November 2016
Kaiser notifies 8,000 members whose information was briefly exposed online
Three Kaiser units – Kaiser Permanente Health Plan, Inc of Northern California, Kaiser Permanente Health Plan, Inc of Southern California, and Kaiser Foundation Health Plan of the Northwest – have been notifying members after an error exposed some members’ protected health information for a brief period. Based on reports to HHS, 8,020 members have been notified that for approximately two hours during…
Data Privacy Event Affects UFCW Local 655 Food Employers Joint Pension Plan
UFCW Local 655 Food Employers Joint Pension Plan is providing notice of a recent data event that may have affected the security of personal information relating to current and former UFCW Local 655 Food Employers Joint Pension Plan participants. On or around July 21, 2016, UFCW was the victim of a ransomware attack. UFCW immediately began…
Court grants stay in FTC v. LabMD
The Court of Appeals for the Eleventh Circuit has granted LabMD’s request for a stay of FTC’s final order in FTC v. LabMD. From the opinion: First, it is not clear that a reasonable interpretation of § 45(n) includes intangible harms like those that the FTC found in this case. As the FTC Opinion said, § 45(n)…
Canadian casino says it was hacked, data was stolen (UPDATED)
Alastair Sharp reports: A major Canadian casino has been hit by a cyber attack in which sensitive customer, employee and vendor data was stolen, its management said on Thursday, warning there is a risk the information will be published. The Casino Rama Resort in Ontario said the hacker claimed to have stolen financial reports, patron…
15 state attorneys general settle with Adobe over 2013 data breach
Attorney General George Jepsen joined 14 other state attorneys general today in announcing a $1 million data breach settlement with the software and technology company Adobe Systems, Inc. The settlement resolves an investigation into the 2013 breach of certain Adobe servers, including servers containing the personal information of approximately 552,000 residents of the participating states. Connecticut…