Tina Orem reports: MasterCard and Visa have confirmed to the California and Nevada Credit Union Leagues that card issuers are allowed under their network rules to divulge to members the names of merchants involved in data breaches, giving credit unions and other card issuers a significant opportunity to mitigate some of the reputational damage that…
Category: Business Sector
BAE Systems first notifying employees of extranet site network attack in 2014
On June 4, BAE Systems Information and Electronic Systems Integration Inc. notified the New Hampshire Attorney General’s Office that they had experienced a network attack on an extranet site in 2014. Due to the nature and scope of the attack, they provided a data set to the Pentagon’s Damage Assessment Management Office (DAMO), who subsequently…
Volcano Corporation notifies employees after e-mail breach
Add San Diego-based Volcano Corporation to your list of firms reporting breaches involving e-mail attachment errors. Volcano Corporation reports that the error was made – and detected – on May 21, when a spreadsheet was inadvertently attached to an e-mail sent to some employees about their retirement account. The spreadsheet included employees’ names, email addresses…
Akorn, Inc. notifies employees after email accounts compromised (UPDATED)
Add Akorn, Inc. to any list you maintain of organizations whose employee email accounts have been compromised. Through their external counsel, the niche generic pharmaceutical firm notified the New Hampshire Attorney General’s Office on June 4 that they had discovered that four employee e-mail accounts had been comprised over the prior two months, exposing personal…
Laptops stolen from National Seating and Mobility contained some patient information
National Seating and Mobility notified the New Hampshire Attorney General’s Office on June 12 of an incident that occurred on April 14, 2015 when two laptops, a smartphone, a backpack, and a briefcase were stolen from two employees’ locked work vans in Atlanta, Georgia. The incidents were immediately reported to the police and NSM was…
Rogue Equifax employee improperly accessed Rite Aid employees’ information
Pharmacy giant Rite Aid receives online paystubs, W-2s, and self-service applications from Equifax. In early March, Equifax notified Rite Aid that it had detected suspicious activity on some Rite Aid employee accounts. Equifax’s investigation resulted in a subsequent notification to Rite Aid on April 30 that an employee had misused their privileged access to reset…