NYU Langone Health notified patients this week that a binder containing a log with information related to presurgical insurance authorizations from NYU Langone Health Pediatric Surgery Associates was mistakenly recycled by NYU Langone’s cleaning company on October 17, 2017. Patient social security numbers were not included and therefore are not at risk, and there is…
Category: U.S.
‘Lizard Squad’ hacker admits to conspiracy targeting ‘thousands’
Jon Seidel reports: A Maryland man with ties to international hacking groups with “thousands of victims” pleaded guilty in Chicago Tuesday to a conspiracy that may land him behind bars. But Zachary Buchta could also catch a big break if he continues to cooperate with federal prosecutors, according to his 20-page plea agreement. Buchta, 20,…
Federal Court’s Embrace Of FTC Data-Breach Settlements As ‘Common Law’ Treads On Due Process
Cory L. Andrews of Washington Legal Foundation has an OpEd that begins: The Federal Trade Commission (FTC) has developed a well-known penchant for using individually negotiated settlement agreements and consent decrees to announce for the first time what qualifies as “unfair” or “deceptive” conduct under the FTC Act. In the data-privacy arena, FTC views these…
How Life in 123 Million American Households Was Exposed Online
Dan O’Sullivan reports: In another blow to consumer privacy, the UpGuard Cyber Risk Team can now reveal that a cloud-based data repository containing data from Alteryx, a California-based data analytics firm, was left publicly exposed, revealing massive amounts of sensitive personal information for 123 million American households. Exposed within the repository are massive data sets…
(Another) Federal Data Breach Notification Law Introduced in Congress
Gregory Bautista, Jeremy T. Merkel, and Alex Moh of Wilson Elser Moskowitz Edelman & Dicker LLP write: Senate Democrats have introduced a third iteration of a federal data breach notification bill, the Data Security and Breach Notification Act of 2017 (S.B. 2179). If passed into law, this bill would replace the patchwork of 48 separate state breach notification…
Air Force Hackers Earn Biggest Government Bug Bounty Ever
Kate Conger reports: A pair of hackers discovered a vulnerability in Air Force software that allowed them to gain access to the Department of Defense’s unclassified network—a find that earned them more than $10,000, the largest payout ever in a government bug bounty program. Read more on Gizmodo.