Dan Worth reports: Sony has given up its appeal over a fine of £250,000 from the Information Commissioner’s Office (ICO) having originally vowed to fight the case. The firm claimed it has done so in order to avoid revealing information on its security procedures rather than because it now agrees with the fine. Read more…
Category: Breach Incidents
Sony Italy Hacked, Over 40k Personal Details Leaked
Turkish Ajan hacker group has today announced a leak of data from the official Italian Sony website. The announcement has come from the official @TurkishAjan twitter account and was announced a short time ago as a leak of accounts from the Italian based Sony website. > Sony Italy hacked (https://t.co/iGrmligcW5) ! 40k account leak. File: https://t.co/p2rbT0UgbN…
Restaurant’s lawsuit against Micros Systems goes to trial Monday
Cotton Patch Cafe‘s lawsuit against Micros goes to trial in U.S. District Court in Baltimore on Monday. I had posted some of the background on this case back in July 2011, here. The restaurant sued Micros after it was hacked and customers’ credit card information was stolen. Now Gary Haber reports: The lawsuit alleges that…
Digging in their heels: Wyndham and LabMD challenge FTC’s authority in data security cases
Cross-posted from PHIprivacy.net: Adam Greenberg reports on two cases where businesses have challenged the FTC’s authority in data security cases. Although Wyndham’s challenge has been discussed in detail on DataBreaches.net (see these posts), I haven’t really described the LabMD case until now. In the LabMD case, the Atlanta Business Chronicle reported last year: The federal agency…
California Dept. of Consumer Affairs has a breach, but doesn’t notify those affected for 6 months?
Ouch. The California Department of Consumer Affairs – Bureau of Automotive Repair (“BAR”) learned that a service provider had a network intrusion breach that gave someone access to bank account numbers and bank routing numbers belonging to the Smog Check stations licensed by the BAR. The breach reportedly occurred between May 2012 and March 2013,…
Former Iberdrola employee charged in April breach
So it looks like the Iberdrola breach, reported in April, was a disgruntled employee situation after all. Steve Orr reports: In mid-April, an RG&E corporate parent announced that a computer intruder had compromised the privacy of job applicants’ personal data. Coming a year after another computer-privacy foul up involving Rochester Gas and Electric Corp., the…