Jeff Blumenthal reviews some stats on breach reports with a local eye to Pennsylvania and New Jersey in this news story. A snippet: Sasha Romanosky, a doctoral student at Carnegie Mellon University whose research revolves around data breaches, said Pennsylvania and New Jersey are slightly above the national average for rate of reported identity theft,…
Category: Breach Incidents
Lost in transit, Thursday edition
Through its lawyers, Rhode Island-based Benefit Concepts, Inc. recently notified the New Hampshire Attorney General’s Office that a package containing employee payroll checks and a CD with copies of the payroll checks went missing. According to the notification letter, their vendor, CompuPay, had sent the package on July 19 via FedEx and it should have…
Shreveport oversight causes security concerns
Brittany Pieper reports that the City of Shreveport, Louisiana left lots of personal and sensitive information lying around when they held a pre-demolition auction of furnishings at the City Hall Annex building. People found boxes of records with breath alcohol tests, signatures, SSNs, addresses, ID cards, and a whole lot more. KSLA News 12 asked…
Van Dyke’s Restorers notifies customers of potential disclosure of info
Bear with me, folks, because this one is a bit confusing. I am looking at an undated letter to customers that Van Dyke’s Restorers sent out, but there is no attached report or cover letter to the Vermont Attorney General’s Office that has been posted online. Vermont’s site indicates a date of August 8,…
Burglary at SanDiegoFit.com office: computer with customer data stolen
Through their lawyers at Foley & Lardner, SanDiegoFit.com, an online women’s apparel site, reported that on August 30, there was a burglary at their locked, alarm-protected building that resulted in the theft of a computer containing customer data. In its notification to the New Hampshire Attorney General’s Office dated September 10, the company reported that…
Cardinal Health notifies employees and applicants of missing laptop
When a good samaritan contacted Ohio-based Cardinal Health in mid-June to tell them that a used laptop purchased on eBay contained company information, Cardinal Health recovered the laptop and began to investigate. Under their policies, data on decommissioned computers are to be securely deleted by their IT department and then securely destroyed by a vendor….