WTAE in Pennsylvania reports that guests who stayed at Nemacolin Woodlands Resort between May and July may have had their credit card numbers, expiration dates, and CSC numbers exfiltrated by a POS compromise. Read the statement from Nemacolin Woodlands Resort on WTAE. One intriguing statement in their release was this: A private firm investigating this…
Author: Dissent
UK: NHS trust sent confidential information to private firm
The Mirror reports that 3,700 patients identified as at risk of coronary heart disease had their confidential details sent to Enhanced Care Services by NHS Bournemouth and Poole without the trust ever getting consent or even notifying the patients. The paper also reports that the Information Commissioner’s Office found the trust had breached the Data Protection Act. Read about…
NC: Laptops stolen from Robeson elections board contained personal info of 71,000 voters
Ali Rockett reports that 71,000 registered voters were notified by letter dated September 12 that five laptops containing their personal information were stolen from the Robeson County Board of Elections sometime between July 18 and September 4. The unencrypted laptops had been kept in a padlocked room, but were removed during a time that a…
The City of Tulsa’s costly screw-up
The saga of the City of Tulsa hack-that-wasn’t-a-hack fascinates me and would be funny if it wasn’t such a costly foul-up. While the city’s IT manager is on paid administrative leave, Ian Silver of Fox23 provides some additional details , most notably: To their credit, the city had hired SecurityMetrics 18 months ago to periodically…
Ca: Student hacks into school board database
Roger Belgrave reports: The Catholic school board has beefed-up its computer network security after one of its high school students hacked into the system last spring. Under direction from Ontario Information and Privacy Commissioner, the Dufferin-Peel Catholic District School Board has posted details of the computer security breach on its website at www.dpcdsb.org. Read more…
NC: Clients’ confidentiality inadvertently breached – twice
Gregory Childress reports that a Chapel Hill councilwoman who is a licensed clinical social worker made an email attachment gaffe that exposed sensitive information on 10 clients to her council colleagues. That she also erroneously attached copies of her and her husband’s 2011 income tax returns is embarrassing, but it is the client data of…