Rick Mitchell reports: The Organisation for Economic Co-operation and Development has released updated privacy guidelines with an increased focus on implementation and enforcement and a new risk-management approach to accountability for companies and public organizations, practitioners told Bloomberg BNA Sept. 11. Posted on the OECD’s website Sept. 9, the updated guidelines replace the 33-year-old original…
Category: Breach Incidents
FTC complaint against LabMD could serve as guidance to businesses on data security
The Federal Trade Commission has released a provisionally redacted public version of its complaint against LabMD (PHIprivacy.net’s coverage of LabMD linked here). The complaint provides what could be useful guidance as to what types of practices the FTC considers to be problematic practices under the Act: 10. At all relevant times, respondent engaged in a number of…
Errant e-mail creates security breach at MNsure
Jackie Crosby reports: A MNsure employee accidentally sent an e-mail file to an Apple Valley insurance broker’s office on Thursday that contained Social Security numbers, names, business addresses and other identifying information on more than 2,400 insurance agents. An official at MNsure, the state’s new online health insurance exchange, acknowledged it had mishandled private data. . Read…
Follow-up: Utah Department of Health hack did not result in ID theft
Marjorie Cortez reports that the massive Utah Department of Health hack in 2012 that compromised personal information of 780,000 Utahns has not been linked to any cases of identify theft: Patton said there were 37 incidents in which people raised questions whether the breach was tied to identity theft. That was later winnowed down to four…
Eight Defendants Plead Guilty in Los Angeles in Armenian Power Gang Case
Oh what a very tangled web we weave… Four members and associates of the Armenian Power gang and four other individuals pleaded guilty late yesterday to charges relating to the activities of the Armenian Power criminal enterprise, including racketeering conspiracy, bank fraud, aggravated identity theft, drug trafficking, and illegal possession of firearms. The following defendants…
Vermont Attorney General Sorrell Requires Security Upgrades And Assesses Penalty For Security Breach Violations
Attorney General William Sorrell has reached a settlement with Natural Provisions, a grocery store in Williston, Vermont in which Natural Provisions agreed to spend $15,000 to significantly upgrade its computer security system to exceed minimum legal protections, and to pay $15,000 to the State, in addition to other injunctive relief. The settlement resolves allegations that Natural Provisions…