Thanks to the California Attorney General’s Office, we now have some of the details on the Korn/Ferry breach, reported yesterday on this blog. Korn/Ferry is an executive recruiting firm. In their sample notification, Thom Steinoff, CTO, writes: We are writing to inform you about a recent incident involving our data network. We recently learned that…
Category: Business Sector
NJ: Credit card info of more than 100 customers stolen from North Bergen car transport business
Anthony J. Machcinski reports: …. Owners of AutoCarry, a car transport business that has an office on 4250 West Side Avenue, reported that burglars broke into the office and stole the records of more than 100 customers Wednesday night, police said. Owners told police that the stolen documents contained credit card numbers, addresses and other…
FEI Company joins the ranks of those who had PII on a stolen laptop
FEI Company has notified employees that a laptop stolen on August 29 contained their personal information. In a letter from their counsel to the New Hampshire Attorney General’s Office, the firm indicates that the laptop held employees’ names, Social Security numbers, taxpayer I.D. information, salary information, date of birth, home address, and basic employment information….
Korn/Ferry’s frustratingly vague breach disclosure (update2)
File this under “How NOT to issue a press release.” Korn/Ferry reportedly issued some statement that they were the victim of a criminal attack. They note that the databases typically do not hold credit cards, Social Security numbers or health information, but they fail to indicate what types of personally identifiable information may have been…
Ca: Bar and lounge workers warned of potential privacy breach (update1)
Jana G. Pruden reports: Hundreds of employees of the Oil City Hospitality Group are being warned that personal information such as social insurance numbers and birth dates has been “accessed and possibly compromised” after a break-in at the company’s head office this summer. The group owns a number of popular bars and lounges in Edmonton,…
How Zappos’ User Agreement Failed In Court and Left Zappos Legally Naked
Eric Goldman writes: In January, Zappos (part of $AMZN) announced a massive data security breach affecting 24 million consumers. As typically happens in these situations, plaintiffs’ class action lawyers swarmed over Zappos for the breach, filing dozens of lawsuits. Zappos tried to send the lawsuits to arbitration based on an arbitration clause in its user agreement. Recently,…