In a post this morning, I incorrectly identified the breached entity as Gannett. It was not Gannet, but GCI, another firm with the same initials. My apologies to Gannett for my error.
Category: Breach Incidents
Update: Belfast councillors’ bank details blunder cost almost £65k
Remember that breach involving Belfast city councillors’ bank details? Lesley-Anne McKeown of the Belfast Telegraph reports on what the breach cost the city: A report presented to councillors has found that dealing with the security breach which was blamed on ‘human error’ cost £64,250 — most of which went on legal fees. Read more on…
China continues to root out traders in stolen personal info
BBC reports that Beijing authorities have arrested 160 on charges of stealing personal information and have shut down 13 sites allegedly involved in trading stolen personal information. This is in addition to the 1,700 arrested last month. Read more on BBC.
CORRECTED: GCI warns some customers about potential misuse of account info
Another insider breach: GCI is sending letters to about 400 customers and urging them to check their accounts for any unusual activity. The letters follow the discovery that a former customer telephone service representative may have misused customer-supplied credit card or bank account payment information. Read more on Anchorage Daily News Correction: In an earlier…
Utah: Did 2005 bill contribute to the Medicaid computer breach?
Chris Vanocur that a 2005 bill that centralized computer systems in Utah may have contributed to the March hack that affected 800,000. The centralization reportedly saved the state money, but Chris asks at what cost? The centralization reportedly led to lay-offs and, eventually, other key state computer personnel left as well. ABC 4 News is…
UK: Contract catering firm signs undertaking to improve data protection
Without fanfare, the ICO has published an undertaking signed by Holroyd Howe Independent Ltd in Reading. The gist of the breach is that in response to a request for a copy of an ex-employee’s payslip (requested by the ex-employee), the data processor mailed a document disclosing the relevant month’s payslips for all of the contract catering firm’s…