Statement by Charleston Area Medical Center: We wanted to let you know about a security incident that occurred at Charleston Area Medical Center’s Research Institute, which involved the personal information of some of our patients. On February 8, 2011, we learned that one of our databases containing information about 3655 patients had security vulnerability. The…
Category: Breach Incidents
No Evidence Of Online Records Breach By Vodafone Claims Privacy Commission
David Richards reports: The Australian Privacy Commissioner who recently initiated an investigation into claims that Vodafone billing and call records for up to four million customers were openly available online has concluded that Vodafone did not have adequate levels of security in place to protect personal information, however there was no breach as claimed by…
Mixed findings in Privacy Commissioner’s Vodafone report
Tim Lohman reports: The Privacy Commissioner’s report into the alleged privacy breach of some four million Vodafone customers’ billing and call records has found failings on the telco’s behalf. The report noted two key areas of the National Privacy Principles, NPP 2.1 and NPP 4.1, which applied to the incident. NPP 2.1 states that organisations…
BC Lotteries online site has fixed privacy glitches, report finds
Chad Skelton reports the follow-up on a breach previously covered on this blog: BC Lotteries did not take adequate steps to protect privacy when it launched its PlayNow.com online gambling site last summer, according to an investigation by B.C. Information and Privacy Commissioner Elizabeth Denham. However, Denham concludes BCLC has since taken steps to address…
New Hampshire man to be sentenced in international scheme using malware to generate calls to premium phone numbers
On February 28, 2011, Asu Pala, a 37 year-old New Hampshire man will be sentenced for his role in an international computer hacking conspiracy that earned him nearly $8 million. On April 21, 2010, Pala of Hudson, NH, pleaded guilty to one count of conspiracy to commit computer fraud and five counts of failure to…
Hacker Blackmails Nintendo With Personal Data From 4,000 Gamers
Warren Riddle reports: Earlier this month, an unnamed hacker reportedly infiltrated a Nintendo 3DS promotional site and uncovered the names, e-mail addresses and postal codes of 4,000 Nintendo members. The assailant then allegedly blackmailed Nintendo because he believed “the firm had shown negligence in not securing the information more effectively.” According to Naked Security, Nintendo alerted the…