Tom Simonite reports: AT&T screwed up in 2010, serving up the e-mail addresses of over 110,000 of its iPad 3G customers online for anyone to find. But today Andrew Auernheimer, an online activist who pointed out AT&T’s blunder to Gawker Media, which went on to publicize the breach of private information, is the one in federal…
Category: Business Sector
Data Breach Class Action against Popular Video Game Developer Dismissed for Failure to Plead Adequate Damages
An update on the Valve/Steam breach… Alan Pate writes: In a ruling this past Wednesday, November 14th, a Federal Judge in the Western District of Washington dismissed a class action against video game developer Valve Corporation. The class action stemmed from a November 6th, 2011 data breach of Valve’s popular online video game distribution platform,…
Breach notification done right? (Nationwide hack, updated)
I spend a lot of time criticizing breach notifications, so it’s nice when I can occasionally point to a positive example. Without considering whether the breach could have been prevented, consider this notification letter from Nationwide Insurance, dated November 16: We want to make you aware that a portion of our computer network was criminally…
Delayed breach notification letter from law firm raises more questions than it answers (updated)
Here’s another notification letter submitted to the California Attorney General’s Office that left me scratching my head. It’s from the law firm of Sprechman & Associates, P.A. in Miami, a firm that specializes in collections. My comments and questions are inserted in italics: Dear XXXXXX: I am writing to advise you that your personally identifiable information…
Adobe investigates alleged customer data breach (updated)
Jeremy Kirk: Adobe said Wednesday it is investigating the release of 230 names, email addresses and encrypted passwords claimed to have been stolen from a company database. The information was released on Tuesday on Pastebin by a self-proclaimed Egyptian hacker named “ViruS_HimA.” The hacker, who claimed the database accessed holds more than 150,000 records, posted…
Labelmaster notifies customers after e-commerce site hacked
American Labelmark Company (dba Labelmaster) recently reported an intrusion involving their e-commerce site (labelmaster.com) that affected customers’ names, addresses, and credit card numbers and expiration dates. In a letter dated October 17 to the New Hampshire Attorney General’s Office, Dwight Curtis reported that on September 12, TrustWave confirmed that they had suffered a breach involving…