Joe Gould reports: The Army has been slow to inform 31 soldiers who received the Medal of Honor and Distinguished Service Cross, or their families, that the recipients’ Social Security numbers were posted online. More than a week after the breach was made public, eight recipients of the DSC, the military’s second highest award for…
Category: Breach Incidents
UK: Essex County Council ‘sensitive’ data found in building
BBC reports: An investigation is under way into how “sensitive” information belonging to Essex County Council ended up in a disused building. The security breach was one of three “recent” episodes at the Conservative-run council. The Information Commissioner’s Office has confirmed it is investigating the breaches. According to BBC, two of the breaches were “committed…
Korn/Ferry’s frustratingly vague breach disclosure (update2)
File this under “How NOT to issue a press release.” Korn/Ferry reportedly issued some statement that they were the victim of a criminal attack. They note that the databases typically do not hold credit cards, Social Security numbers or health information, but they fail to indicate what types of personally identifiable information may have been…
Ca: Bar and lounge workers warned of potential privacy breach (update1)
Jana G. Pruden reports: Hundreds of employees of the Oil City Hospitality Group are being warned that personal information such as social insurance numbers and birth dates has been “accessed and possibly compromised” after a break-in at the company’s head office this summer. The group owns a number of popular bars and lounges in Edmonton,…
How Zappos’ User Agreement Failed In Court and Left Zappos Legally Naked
Eric Goldman writes: In January, Zappos (part of $AMZN) announced a massive data security breach affecting 24 million consumers. As typically happens in these situations, plaintiffs’ class action lawyers swarmed over Zappos for the breach, filing dozens of lawsuits. Zappos tried to send the lawsuits to arbitration based on an arbitration clause in its user agreement. Recently,…
Consumer irritation over TD Bank breach about to mushroom? (update3)
More media coverage of a breach I commented on yesterday. Today Lindsay Tice of BDN Maine adds some additional details to earlier reports about a breach that occurred March 30 but wasn’t disclosed recently: The security breach occurred in March when two backup tapes from a computer server were shipped from one TD Bank location to another….