Kate O’Flaherty reports: UK supermarket Morrisons is facing a massive payout to staff after losing the first data leak class action in the UK. It comes after Andrew Skelton, a senior internal auditor at the retailer’s Bradford headquarters, leaked employee data online in 2014. Last year, a court ruled the firm was liable for his actions….
Category: Insider
Ca: AHS failed to protect health information, privacy commissioner finds
We had noted this breach on this site back in 2016, but here’s the follow-up. CBC reports: Alberta Health Services has come under fire from the province’s privacy commissioner for its role in the largest and longest-duration privacy breach AHS has ever experienced. The Office of the Information and Privacy Commissioner reported Wednesday that a former AHS…
Equifax engineer who designed breach portal gets 8 months of house arrest for insider trading
Catalin Cimpanu reports: A former Equifax engineer who coded parts of the company’s breach notification website for last year’s security incident was sentenced this week to eight months of home confinement and restitution of ill-gotten funds after using insider information about the Equifax breach to make over $75,000 from insider trading. The sentence was passed…
Former Hassan staffer accused of breaking into office, leaking info
Breanna Edelstein reports: Sen. Maggie Hassan’s former staffer Jackson Cosko is facing up to 50 years in federal prison amid accusations that he recently broke into the New Hampshire Democrat’s Washington office, leaked lawmakers’ personal information and threatened to do the same to others. Investigators said they were alerted to the 27-year-old’s alleged criminal activity after he used…
$400K settlement reached in Capital Health patient privacy breach
Richard Woodbury reports: A proposed settlement worth about $400,000 has been reached in a Nova Scotia class-action lawsuit relating to the improper access of patients’s personal health information by an employee of the former Capital District Health Authority, according to a law firm involved in the case. The breaches by former employee Katharine Zinck Lawrence, who accessed the…
Tech worker in Central Pennsylvania accused of stealing customers’ nude photos
Adam Hermann reports: A 23-year-old tech employee from York, Pennsylvania, is accused of stealing nude photos from customers’ cellphones. Cristian Adonis Santiago, 23, allegedly sent the personal photos to his own email account while working on customers’ phones in the store at an authorized retailer for Verizon Wireless, according to York Area Regional Police. Read…