Health Net’s notification to the New Hampshire Attorney General’s Office is now available online (pdf). Dated November 23, the letter states that although the files on the lost portable hard drive were not encrypted as they should have been, because they were image-only format files of scanned documents, they would be difficult to view. The…
Author: Dissent
Ca: Public has a right to know
The Times Colonist has an editorial about a breach reported previously on this blog. The editors point out that it was their reports who uncovered what should have been revealed by the government and that there are many as yet unanswered questions. Kudos to the reporters, Lindsay Kines and Rob Shaw, and the Times Colonist…
Ca: Postal worker arrested after passport applications stolen
From the Canadian Press: Authorities say a Canada Post employee was arrested after 75 filled-out passport applications collected by Human Resources Minister Diane Finley’s office were allegedly stolen. A 28-year-old man from the Gatineau, Que., area was arrested Nov. 6 and released, Const. Isabelle Poirier said Thursday. Police recovered passport applications from Ontario and some…
If DOD can do this, why can’t they manage to remove SSNs?
Charlie Reed reports: The Defense Department will not meet its end-of-the-year deadline for removing Social Security numbers from military ID cards as they are issued or renewed, the Pentagon has confirmed. It is not clear how much progress, if any, has been made toward meeting that goal or any aspect of a sweeping identity theft…
Top Experts Examine Causes Of Breaches In Spy Museum Forensics Panel
Tim Wilson writes: Here at the U.S. Spy Museum, breaches are taken seriously. And in a panel held here last night, four top security experts had some serious advice for enterprises and security professionals. […] If companies are going to defend themselves against the onslaught of attacks, panelists said, they need to change the way…
Judge throws out lawsuit against Express Scripts
Brendon Tavelli of Proskauer Rose writes: On November 23, 2009, a federal court in Missouri bucked the recent trend in identity exposure lawsuits and refused to recognize Article III standing in a class action lawsuit that alleged simply an increased risk of identity theft resulting from a data breach. In Amburgy v. Express Scripts, Inc.,…