It’s all fun and games until you have to report a breach involving your health plan to HHS. Nintendo of America, Inc. notified HHS on February 26 of an incident impacting 6,248. The incident was coded as “Hacking/IT Incident” involving their Network Server, but still covers a lot of possibilities. [CORRECTION: It was not their…
Category: Business Sector
Pharm-Olam notifies employees of W-2 information breach
It’s not clear from their notification how many employees were impacted and how the security incident occurred, but Pharm-Olam International started notifying employees by mail of a security incident that compromised their names, Social Security and income information: At Pharm-Olam International (the “Company”) we value you and respect the privacy of your information, which is…
UK: Morrisons denies liability as data leak case nears court for more than 100 Peterborough employees
The Peterborough Telegraph reports: Lawyers acting on behalf of several thousand Morrisons’ employees, including more than 100 from Peterborough, say they will “vigorously contest” the retailer’s assertion that it wasn’t to blame for a data leak which led to their personal details being posted on the internet. Bank, salary and National Insurance details of almost…
Wal-Mart says some pharmacy client data was visible to others online (updated)
Nathan Layne reports: Wal-Mart Stores Inc said on Wednesday that prescription history and other basic information on a few thousand online U.S. pharmacy customers may have been visible to other users during a four-day stretch last month due to a coding mistake. “We had a software coding error for a 72-hour period from February 15…
Cox investigates possible data breach
When your employees’ data are up for sale on the dark web, that’s a pretty good indicator you’ve had a breach – if the data are valid. Joseph Cox reports: Apparent names, email addresses, phone numbers, and other information relating to some 40,000 Cox Communications employees is currently advertised on a marketplace specialising in stolen…
Operation Wrath takes aim at Russia (updated)
Seen on haveibeenpwned.com: 1,476,783 accounts dumped: In February 2016, the Russian portal and email service KM.RU was the target of an attack which was consequently detailed on Reddit. Allegedly protesting “the foreign policy of Russia in regards to Ukraine”, KM.RU was one of several Russian sites in the breach and impacted almost 1.5M accounts including sensitive personal information….