In May, 2016, this site noted a breach report from Abingdon-Avon School District in Illinois. One month later, we noted a news report that their IT Director, identified at the time as Mark Rodgers (sic), had been arrested, although it wasn’t clear if the felony eavesdropping charges were directly related to the breach. Not reported…
Category: U.S.
Aetna sues claims administrator KCC over botched notice in HIV case
Alison Frankel reports that Aetna is suing Kurtzman Carson Consultants for exposing plan members’ HIV status in envelope windows sent out in July as part of notifying members of settlement negotiations in other litigation matters. The privacy breach resulting from the exposure resulted in Aetna members experiencing a privacy breach involving sensitive information, and led…
Latvian National Pleads Guilty to “Scareware” Hacking Scheme That Targeted Minneapolis Star Tribune Website
A Latvian man pleaded guilty today in Minneapolis for participating in a lucrative “scareware” hacking scheme that targeted visitors to the Minneapolis Star Tribune’s website. Acting Assistant Attorney General John P. Cronan of the Justice Department’s Criminal Division, U.S. Attorney Gregory G. Brooker of the District of Minnesota and Special Agent in Charge Richard T….
Uber says hackers behind 2016 data breach were in Canada, Florida
Dustin Volz reports: The two people who hacked ride-hailing firm Uber’s data in 2016 were in Canada and Florida at the time, a company security executive told a U.S. congressional committee on Tuesday. But I love this line in his testimony: “We made a misstep in not reporting to consumers, and we made a misstep…
Uber: We had “no justification” for covering up data breach
Cyrus Farivar reports: Uber’s top security official testified at Capitol Hill on Tuesday, saying that Uber had “no justification” for not coming clean sooner when it had been hit by a massive data breach in 2016. In written testimony, John Flynn, Uber’s chief information security officer, told a Senate committee that “it was wrong not…
Pittsburg employees notified after their W-2 data stolen in phishing scheme
CORRECTION: I picked this up incorrectly as Pittsburgh in PA. A kind reader pointed out my error. This was Pittsburg in Kansas! Corrected Post: The City of Pittsburg hasn’t disclosed how many former and current employees had their W-2 data stolen in a phishing scam on January 30, but I’m betting it’s more than a…