WPMI reports from Alabama on what they found when they went dumpster diving at about a dozen title loan and cash advance businesses in the Mobile, Alabama area: In the dumpster out front of Alabama Title Loans on busy Springhill Avenue, I found dozens of documents, not shredded, and all full of personal information. “Here’s…
Category: Breach Incidents
Boxes with personal info found in trash
We really need stronger laws protecting the security and disposal of paper records. Today’s example is from Beaverton, Oregon: Seven large boxes filled with personal information of clients from the Sylvan Learning Center, including names, birth dates, Social Security numbers and credit card information, were found in a Dumpster in Beaverton. Read more on KOIN….
Bank of Scotland receives £75K penalty after three year fax blunders
The Information Commissioner’s Office (ICO) has served the Bank of Scotland with a monetary penalty of £75,000 after customers’ account details were repeatedly faxed to the wrong recipients. The information included payslips, bank statements, account details and mortgage applications, along with customers’ names, addresses and contact details. The documents were faxed over a three year period, with the…
Plaintiff in LinkedIn lawsuit says harm is irrelevant and the issue is deception
MainJustice has an update to the LinkedIn lawsuit concerning their massive hack last year. As expected, LinkedIn moved to dismiss on the grounds that the plaintiff hasn’t suffered any harm and hasn’t proved they used outdated security, but the plaintiff responds that harm is irrelevant – she wouldn’t have purchased a premium account if it…
TN: Franklin Police work through Metro report on possible law enforcement data breach
Kevin Walters reports: A report detailing the findings of a Metro Police investigation into whether a Franklin Police employee illegally accessed a law-enforcement database was turned over to city officials Thursday. However, the report will not be released until Franklin Police have time edit the report in order to remove personal information the report contains….
US Airways resets passwords for Dividend Miles accounts, notifies customers of breach (updated)
When I saw “US Airways” appear on California’s public breach report site, I thought it was going to be the ADP-related breach I reported last week. But no, it seems that US Airways had another breach, this one discovered on July 12. In an undated letter with a file creation date of August 2, Fernand…