I spend a lot of time criticizing breach notifications, so it’s nice when I can occasionally point to a positive example. Without considering whether the breach could have been prevented, consider this notification letter from Nationwide Insurance, dated November 16: We want to make you aware that a portion of our computer network was criminally…
Category: Business Sector
Delayed breach notification letter from law firm raises more questions than it answers (updated)
Here’s another notification letter submitted to the California Attorney General’s Office that left me scratching my head. It’s from the law firm of Sprechman & Associates, P.A. in Miami, a firm that specializes in collections. My comments and questions are inserted in italics: Dear XXXXXX: I am writing to advise you that your personally identifiable information…
Adobe investigates alleged customer data breach (updated)
Jeremy Kirk: Adobe said Wednesday it is investigating the release of 230 names, email addresses and encrypted passwords claimed to have been stolen from a company database. The information was released on Tuesday on Pastebin by a self-proclaimed Egyptian hacker named “ViruS_HimA.” The hacker, who claimed the database accessed holds more than 150,000 records, posted…
Labelmaster notifies customers after e-commerce site hacked
American Labelmark Company (dba Labelmaster) recently reported an intrusion involving their e-commerce site (labelmaster.com) that affected customers’ names, addresses, and credit card numbers and expiration dates. In a letter dated October 17 to the New Hampshire Attorney General’s Office, Dwight Curtis reported that on September 12, TrustWave confirmed that they had suffered a breach involving…
Bob Ward & Sons notifies online customers of security breach (updated)
Montana-based Bob Ward & Sons report that customers who ordered online between May 31 and August 3 had their names, addresses, and credit card information acquired by unauthorized individuals who used at least some of the data for fraudulent purposes. In a letter dated October 23 to the New Hampshire Attorney General’s Office, Chad Ward…
Blizzard Responds To Class Action Lawsuit Over Security Concerns
Erik Kain of Forbes has Blizzard’s response to the lawsuit mentioned previously on this blog. He seems to be as skeptical about the lawsuit’s chances of success as I am.