Bob Hansen reports: Before Michael Winter could open his mail, he was shocked by what he found on the envelope. “You know they have no right,” said Winter after finding his social security number printed on the front of an envelope mailed to him from Anthem Blue Cross. The number was printed just above his…
Author: Dissent
Eidos and Deus Ex sites hacked, personal data acquired?
Brian Krebs reports that Eidos Interactive and one of its biggest titles — Deus Ex– have been hacked and some user information accessed or acquired: KrebsOnSecurity.com obtained an archived copy of the attackers’ online chatter as they were covering their tracks from compromising the sites. A hacker using the alias “ev0″ discusses having defaced the…
President’s cybersecurity agenda includes proposed federal data breach notification law
To cut to the chase: you can read the language of the proposed data breach notification law here. Sadly, the proposed language allows entities NOT to notify affected individuals if they conduct a risk assessment and determine that there is no risk to those whose data were breached. Other problems I see on a first…
OH: Laptop with financial information stolen from the home of state Auditor’s Office employee
Reginald Fields reports: A state-owned laptop containing some financial audits of public offices in northwest Ohio was stolen this week during a burglary at a house in Findlay. It was the home of a regional auditor for the state Auditor’s Office. The employee, whose identity has not been released, was suspended for 15 days because…
Sony notifications to New Hampshire Attorney General’s Office
Although there doesn’t seem to be anything new in them, if you’re curious, you can see Sony’s breach notifications to New Hampshire of April 26 and May 2.
Wyndham continues to identify and notify hotel guests impacted by past breaches
Some breaches seem to go on forever. Wyndham Hotels and Resorts, which reported a hacking incident in 2008 and hacking incidents in 2009 and 2010, has recently notified the New Hampshire Attorney General’s Office of an update to its report of June 2010. That report did not and does not appear on the state’s breach report…