Jonathan Stempel reports: The ringleader of a scheme in which four former Saks Fifth Avenue employees used stolen customer data to buy $430,000 of luxury goods from the retailer’s flagship Manhattan store, with plans to resell them on the black market, has pleaded guilty, prosecutors said. Tamara Williams, 38, of Queens, pleaded guilty to grand…
Category: Business Sector
Etihad probing possible data breach of 7,000 loyalty program customers
Alexander Cornwell reports: Etihad Airways on Wednesday said it is investigating a possible leak of data belonging to customers who took part in a promotional campaign in 2013. Personal details of thousands of people who took part in the promotion are believed to have been leaked at a third-party company, which worked with the airline….
Uber settles NYS probes, agrees to pay $20K fine, adopt data security provisions
I’m not seeing any press release from NYS Attorney General Schneiderman’s office yet, but Kenneth Lovett of the NY Daily News reports that Uber has settled two probes stemming from both its “God View” privacy breach scandal and delayed notification of a breach involving drivers’ information. In addition to paying the $20,000 fine to settle both probes,…
Lack of Injury Dooms Michaels Breach Class Suit
From Bloomberg Law: Because the plaintiffs failed to demonstrate actual injuries, arts and crafts retail chain Michaels Stores Inc. Dec. 28 dodged a federal court putative class action over a data breach that compromised approximately 2.6 million payment cards. Dismissing the suit without prejudice, Judge Joanna Seybert of the U.S. District Court for the Eastern District of…
Korea opens pan-industry center for credit data protection and security
Lee Sun-young reports: Korea Credit Information Services, a pan-industry body tasked with data preservation and protection, was launched in Seoul on Tuesday amid mounting calls for data security after a series of large-scale information leaks. The new entity will act as a centralized data center for personal credit information, taking over data collected and preserved…
Henry Schein settles FTC charges it misled customers about encryption of patient data
It appears the FTC acted on a complaint I filed with them last year concerning Henry Schein Dental’s use of the word “encryption” in their marketing and their refusal to individually notify customers that the “encryption” provided by Dentrix G5 was not NIST-grade encryption that would give them Safe Harbor under HIPAA. Background on my concerns…