We’ll return on December 26th. If you’re celebrating, have a Merry Christmas!
Month: December 2017
Data breach at Ancestry
Judy G. Russell reports: The folks at Ancestry have taken a proactive security step of closing part of the RootsWeb service today after being notified of a security breach affecting one part of the RootsWeb service. The security issue came from a part of RootsWeb that was closed some months ago. It turns out that,…
Canadian government agrees to $17.5 million settlement of class action lawsuit over student loan privacy breach
The Canadian Press reports an update on litigation stemming from a lost or missing device with student loan data on 583,000 students. The breach occurred in 2013. The federal government will pay at least $17.5 million to settle a class action lawsuit filed after a major privacy breach involving about 583,000 student loan recipients. Firms…
Colorado Mental Health Institute at Pueblo notified 650 patients after phishing incident
The Colorado Mental Health Institute at Pueblo is under the state’s Department of Human Services. On December 22, it issued a notice following discovery of a phishing incident that potentially affected 650 patients: The Colorado Mental Health Institute at Pueblo (CMHIP) experienced a potential data breach after a staff member on Nov. 1, unintentionally allowed…
Notice of Data Incident Regarding Veyna & Forschino
(I should have remembered to anticipate press releases after 3 pm on the Friday of a big holiday weekend. Here’s another one:) On November 27, 2017, Veyna & Forschino (V&F) encountered suspicious activity on one company email account. V&F immediately began investigating the matter and contacted its local IT firm who disabled access. Further, V&F…
Businesses Take Note: Updates to Maryland’s Data Breach Notification Law Take Effect January 1, 2018
James Benjamin, Jr. of Pessin Katz Law, P.A. writes: On January 1, 2018, several amendments to the Maryland Personal Information Protection Act, (“MPIPA”) MD Code Ann., Com. Law §14-3501 et seq. will go into effect. Businesses collecting personal information should take note and be prepared. Under the law as amended, the definition of “personal information”…