Telecompaper reports: Orange Romania was fined with RON 10,000 by data protection authorities for failing to comply with the obligations concerning the application of security measures and keeping the confidentiality of end-users’ personal phone data, according to local paper Hotnews.ro. The operator was sanctioned after a customer sent a complaint saying that his replacement phone…
Category: Business Sector
Home Depot says 53 million more email addresses stolen; retailers urge Congress to pass data breach law
Reuters reports: Home Depot Inc, the world’s largest home improvement chain, said about 53 million more email addresses were taken during a recent breach of its payment data systems. […] Home Depot said the stolen files that contained the additional email addresses did not include passwords, payment card information or other sensitive personal information. Criminals…
“We thought we had done all that could be done to protect your information.” (update)
Even those who are conscientious may find themselves having to notify consumers of a breach, as One Love Organics discovered last month. In a letter dated October 30 and signed by Suzanne LeRoux, President of the Georgia-based, LeRoux writes: We had performed the required security and hardening procedures required by the Payment Card Industry Data Security Standard (“PCI…
Lyft Accuses Former COO Of Stealing Confidential Documents Before Joining Uber
Ryan Lawler reports: On-demand rides startup Lyft is taking its former COO Travis VanderZanden to court for breach of his confidentiality agreement and fiduciary duty weeks after the executive joined arch-rival Uber. In a complaint filed this afternoon in San Francisco Superior Court, Lyft claims VanderZanden downloaded a number of non-public company documents to his personal Dropbox account…
AU: Telstra ordered to pay AU$18K over privacy breach
Leon Spencer reports: The Office of the Australian Information Commissioner (OAIC) has ordered Telstra to pay AU$18,000 and apologise to a judge after it failed to tell him it had published his details in the White Pages directory. According to the OAIC, the unnamed judge — identified only as “DK” — contacted Telstra to have…
U.K.: ICO imposes monetary penalty on hotel booking site following SQL injection breach in 2013
A press release from the ICO: The Information Commissioner’s Office (ICO) is warning organisations that they must make sure their websites are protected against one of the most common forms of online attack – known as SQL injection. The warning comes after the hotel booking website, Worldview Limited, was fined £7,500 following a serious data breach where…