Cyrus Farivar reports: A 24-year-old man from Illinois has been accused by federal prosecutors of being the spokesman for AlphaBay, the now-defunct online drug marketplace. On Wednesday, Ronald L. Wheeler III of Streamwood, Ill. was charged in federal court in Atlanta with “conspiracy to commit access device fraud,” according to the Associated Press. Read more…
Month: November 2017
UK: Nursing auxiliary fined for unlawfully accessing patient records
And while we’re talking about insider breaches, here’s a case from the U.K. From the Information Commissioner’s Office: A nursing auxiliary has been fined for accessing a patient’s medical records without a valid legal reason. Marian Waddell, 61, was working at the Royal Gwent Hospital in Newport when she unlawfully accessed the records of the…
Ca: Pharmacist Given Conditional Sentence for Health Information Breaches
Protenus’s monthly breach barometer reports attempt to hammer home the need to address and prevent insider breaches. The problem is not unique to the U.S.. Here’s a recent case out of Canada: A pharmacist pleaded guilty to accessing health information in contravention of the Health Information Act (HIA) and received a conditional sentence order on October 16,…
Cyta fined for allowing employee to leak personal data
State owned telecommunications authority (Cyta) was fined on Wednesday €10,000 for violating personal data, after an employee gave confidential data of over 200 customers to a retired police officer. The fine was handed down by the commissioner for personal data protection, Irini Loizidou. Read more on Cyprus Mail.
Huddle’s ‘highly secure’ work tool exposed KPMG and BBC files
Chris Foxx reports: The BBC has discovered a security flaw in the office collaboration tool Huddle that led to private documents being exposed to unauthorised parties. A BBC journalist was inadvertently signed in to a KPMG account, with full access to private financial documents. Huddle is an online tool that lets work colleagues share content…
Retailer Forever 21 discloses payment card breach
So far, all I’ve seen is their press release, so it will have to do until we get more details from other sources, but I do wonder what kind of “third party” alerted them to this – was it a third party vendor who had some responsibility for data security or a customer who experienced…