I’m still uncovering details of the ADP coding error breach that impacted employees of the City of Houston, US Airways, and McKesson. Now we can add AlliedBarton Security Services to the list of affected clients. And Lennox International. Interestingly, these newly posted reports indicate that 206 of ADP’s clients were affected by this breach. In…
Category: Breach Incidents
Oh, those hidden fields in Excel spreadsheets: Columbia University Medical Center notifies students of breach
It seems that Columbia University Medical Center inadvertently exposed the Social Security numbers of 138 medical students from the graduating class of 2013 in an Excel spreadsheet sent to faculty, students, and staff. CUMC became aware of the breach on March 15. The breach occurred because the Excel spreadsheet with residency match lists for the graduating…
One year after data theft, Primedia (RentPath) employees and applicants notified of breach
I could have sworn I had posted something about the Primedia (formerly RentPath) breach, but maybe I just tweeted it and forgot to blog it. Thankfully, Jeff Goldman of eSecurity Planet provided a preliminary media report in June. This blog post incorporates an update to the incident. Back in May, attorneys for Primedia notified at…
Experian reports another breach of its credit report database (update 2)
I haven’t been seeing as many breach reports by Experian this year, which could be a good sign, although it just could be that some states haven’t updated their breach lists in while. In any event, one just showed up on New Hampshire’s site that elevated an eyebrow. In a letter dated September 16 signed…
MNsure employee responsible for e-mail attachment breach no longer employed at MNsure
The MNsure employee who erroneously attached a spread sheet with 1,587 insurance agents’ names and Social Security numbers to an e-mail to one insurance agent is no longer working for MNsure. The Associated Press’s coverage adds that the employee violated internal policy by storing unencrypted personal information about Minnesota insurance agents on a computer desktop. The agency…
LabMD Responds to FTC Complaint: Claims Agency Lacks Enforcement Jurisdiction
Just received this press release from Cause of Action with LabMD’s response to FTC’s complaint: Cause of Action (CoA), a government accountability organization, filed an answer to an aggressive and arbitrary enforcement action brought by the Federal Trade Commission (FTC) against LabMD, a small cancer diagnosis company. CoA is defending LabMD against a complaint brought by the FTC in…