Another CFAA case. Although the victim company is not named, the defendant’s LinkedIn profile indicates that he was employed at Western Asset Management from March 2007 – March 2011. How he was able to access his former supervisor’s email account years after he left their employ is not addressed in the press release, but raises questions as to whether…
Category: U.S.
NZ: Data breaches at Television New Zealand
Russell Blackstock reports: TVNZ has revealed two data security breaches over the past year, including the payment of a “fraudulent invoice” and the distribution of “commercially sensitive data” to external media agencies. The state broadcaster detailed the incidents in written answers to Parliament’s Commerce Committee. “An email phishing attack on a supplier resulted in a…
Personal and sensitive data of 59,000 charter school students in California leaked: researcher
California Virtual Academies (CAVA) is a network of 11 publicly funded charter k-12 schools in California. Researcher Chris Vickery recently contacted DataBreaches.net after he found a database with 58,694 of their students’ records leaking. In addition to a lot of personal information on the students that was all in plain text, the leaking data included some information on student…
OPM Gives Green Light to Start Submitting Data Breach Verification Requests
Ian Smith reports that if you think you were impacted by the OPM data breach but haven’t received a notification letter, you can submit a verification request through a government web site: The Office of Personnel Management has completed mailing notification letters to roughly 93% of individuals whose Social Security Number and other personal information was…
Oh what a tangled web they wove…
Peter Strozniak asks a question many should be asking: how did this go on for so long without being detected? One of New Jersey’s smallest credit unions was directly connected to a sprawling criminal enterprise that led to the largest customer data theft case in history, which involved the nation’s biggest bank, according to court…
OR: Northwest Primary Care Notifies 5,372 Patients of Insider Data Theft
Northwest Primary Care (NWPC) is notifying certain patients about a security incident involving information that was stolen by a former employee. On October 13, 2015, NWPC was informed by law enforcement that the employee stole patient names, dates of birth, Social Security numbers, and credit card numbers. The theft occurred between April 2013 and December 2013. The employee…