Ah, so this breach was politically motivated. Tony Thomas reports: Some area OB-GYNs say they are being harassed after speaking out against a controversial bill being considered at the state Capitol. Dr. Richard Zane of the Atlanta Women’s Health Group said his office and two others have been broken into in the days following a…
Author: Dissent
MA: Property Management Firm to Pay $15,000 in Civil Penalties Following Data Breach – But Why?
A follow-up to a breach reported on this blog (but not in the mainstream media) in November 2011: A property management firm will pay $15,000 in civil penalties following the theft of a laptop containing the personal information of over 600 Massachusetts residents, Attorney General Martha Coakley announced today. “It is incredibly important that businesses…
You can do everything right, but still incur penalties – lessons learned from BCBS of Tennessee
Deborah Johnson Pyles writes: One of the lessons from the recent settlement agreement entered into by Blue Cross/Blue Shield of Tennessee with the Department of Health and Human Services is that doing everything right may not be enough. The settlement concerned alleged violations of Health Insurance Portability and Accountability Act privacy and security laws arising…
Why ‘data breach’ isn’t a dirty word anymore
Elinor Mills has a round-up of quotes from multiple sources that all suggest that having a data breach generally isn’t fatal to a business – although there are, of course, exceptions. Not surprisingly, my favorite quote is from Adam Shostack: “The reason we’re struggling as an industry is that we cover up the failures,” said…
MilitarySingles.com hack exposes over 160,000 users’ information (updated to include ESingles denial of breach)
MilitarySingles.com has apparently been hacked. The hack was announced on Twitter earlier today by Operation Digiturk and a database of 163,792 names, usernames, e-mail addresses, IP addresses, and passwords has been dumped on the Internet. The tweet was accompanied by the hashtags #anonymous #antisec #infosec I don’t know if the site is aware of the hack and eSingles Inc.’s…
UK: Data loss by North East councils is revealed
Andrew Glover reports: Widespread personal data loss by North East councils has put thousands of people at risk of identity fraud. Lost laptops, missing memory sticks and bundles of post sent to wrong addresses have put delicate private details in the wrong hands. A Freedom of Information Act request revealed a catalogue of potentially dangerous…