If you’ve been following along since 2015, you may recall a breach involving Carphone Warehouse that was first disclosed in August, 2015. At the time, we were told that the hack affected 2.4 million customers’ data and about 90,000 customers’ credit cards. Fast forward to today, when the U.K.’s Information Commissioner announced that it has…
Month: January 2018
Dog-Walking App Exposed Home Addresses and Lockbox Codes
Oh good grief. You can’t even walk dogs without risking a breach of your personal information, it seems. My friend Sheila Kaplan sent this one along, as reported by Rolfe Winkler and Robert McMillan: Wag Labs Inc., the startup behind a popular dog-walking smartphone app, inadvertently exposed webpages showing customer information including addresses and lockbox codes that…
Ca: Regina Public investigated after teacher breached students’ privacy
Here is the argument for more education and training. Ashley Martin reports: The Regina Public School Division is addressing policy gaps after a teacher uploaded more than 2,000 documents, many containing students’ information, to a public website. Some of the information was online for 15 months before the privacy breach was reported to the Office…
UK Government Consults on EU Cybersecurity Plans
Mark Young and Joseph Jones report: As we summarized last fall, the EU Commission published a new Cybersecurity Communication in September that, among other things, sets out proposals for an EU cybersecurity certification framework as part of an EU “Cybersecurity Act” (see our post here and a more detailed summary here). Just before the holidays, on December 20, 2017, the UK Government…
UIDAI firewalls 5,000 officials post ‘breach’
Surabhi Agarwal reports that the Unique Identification Authority of India (UIDAI) has taken steps to prevent a future breach like the one that caused a media firestorm when a reporter was able to easily purchase access to Aadhaar credentials. UIDAI has now restricted the access of those who were previously able to access information more…
How to Assess a Vendor’s Data Security
Cooper Quintin and Soraya Okuda of EFF collaborated with Jonah Sheridan of Information Ecology to come up with a helpful guide: Perhaps you’re an office manager tasked with setting up a new email system for your nonprofit, or maybe you’re a legal secretary for a small firm and you’ve been asked to choose an app…