Here are another 11 breach notifications submitted to the Maryland Attorney General’s Office. These were filed in May and June, and in all but one case, we didn’t know about them through the media or other sources. A breach involving USAA Federal Savings Bank had previously been noted on this site, but there’s more to…
Category: Business Sector
UK doctors’ personal data found on used hard drive sold online
There have been many instances in the U.S. of personal data showing up on equipment sold at online and offline auctions. Once such case in the U.K. involved doctors’ data and the company responsible for the data, Healthcare Locums Plc (HCL), a UK specialist healthcare recruitment agency, has now been found in breach of the Data Protection Act…
CA: 3rd suspect charged in pump-skimming scam
Henry K. Lee reports: A third suspect has been charged for his role in a gas pump-skimming operation that was uncovered in Martinez and victimized customers throughout Northern California, authorities said Wednesday. Edwin Hamazaspyan, 31, is facing identity theft and conspiracy charges along with David Karapetyan, 31, and Zhirayr Zamanyan, 30, all of Los Angeles. The three…
A Rochester credit union cancels 3,700 cards following ALDI breach
Earlier today, I noted that ALDI had notified the Maryland Attorney General’s Office that 8,000 Maryland residents might be affected by the recent security breach they experienced. Also today, 13WHAM in New York reported that ESL Federal Credit Union has blocked activity on the credit/debit cards of approximately 3,700 customers because of the breach breach. ESL…
Encryption didn’t prevent this breach
A report to the Maryland Attorney General’s Office from ING gave me pause because I don’t remember ever seeing a security issue like this before in a breach report. In their notification, ING writes (emphasis added by me): ReliaStar Life Insurance Company (RLIC) is responsible for premium administration for RLIC insurance products purchased by employees of…
Stolen Trade Center Management Associates employee data triggered homeland security concerns
In June, Trade Center Management Associates in Washington, D.C. became aware that employee data had been stolen from a TCMA facility. Employee information on the stolen equipment included names, SSN, and in some cases, fingerprints. Among those with data on the device were 284 Maryland residents. The TCMA describes itself as a private sector…