Hunton & Williams have an informative law blog, Privacy and Information Security Law Blog, and if you haven’t already bookmarked, you should. Yesterday they wrote: On November 17, 2010, Representative John Adler (D-NJ) introduced the Red Flag Program Clarification Act of 2010 (H.R. 6420) to “amend the Fair Credit Reporting Act with respect to the…
Author: Dissent
Penalty-based system could make you sick
In a letter to the editor, Matt Pierce of Bloomington, Indiana and District 61 state representative. comments: Indiana University portrays its new Health Engagement Program as providing employee discounts on health insurance premiums in exchange for healthier living. In truth, it punishes employees who refuse to surrender their privacy to the university or allow it…
IN: Some 1st Source Bank customers get letter informing them of possible security breach
Rich Molina reports: A suspected security breach may have compromised the personal data of some customers at a local bank. Some 1st Source Bank customers got a letter Friday informing them they will be getting a new pin and debit card in the mail. The letter said there was a breach at a third-party payment…
Insurance Glitch Affects AARP Customers
A Glen Burnie man helped uncover an error in the AARP insurance program that sent life insurance reviews to the wrong customers, compromising their identities…… “I looked at the form, and I was shocked. It didn’t have my name on it, phone number, date of birth or my policy number. It had someone else’s personal…
Hacked Federal Reserve Network Was Test-only
Robert McMillan reports: A June 2010 hacking incident that compromised a network at the Federal Reserve Bank of Cleveland happened on a test system and not the bank’s production servers…. According to Gates, the hacker managed to break into a single Fed test PC that was connected to other test computers. “This is a system…
California serious about unauthorized employee access to patient data
The California Dept. of Public Health has just fined seven more entities whose employees improperly accessed patient data. You can read the summaries on the companion blog at It’s great that the state is fining them, but one wonders why HHS/OCR are not also fining entities for these types of breaches or even worse…