Patricia Ballin reports: Generating a flurry of conversation among privacy professionals worldwide, the U.S. Federal Trade Commission (FTC) last week filed its response to Wyndham Worldwide Corporation’s interlocutory appeal in the Third Circuit. […] The FTC’s response outlines and affirmatively answers the three questions presented in Wyndham’s appeal: whether a company’s unreasonable failure to protect the security…
Category: Business Sector
Interesting closing letter from FTC to Verizon concerning WEP default on older routers
From the FTC Ms. Dana Rosenfeld Kelley Drye Washington Harbour, Suite 400 3050 K Street, NW Washington, D.C. 20007 Dear Ms. Rosenfeld: UNITED STATES OF AMERICA FEDERAL TRADE COMMISSION WASHINGTON, DC 20580 November 12, 2014 As you know, staff in the Division of Privacy and Identity Protection has conducted an investigation into possible violations of…
Coca-Cola sued over stolen laptops breach
Law360 reports that Coca-Cola was hit with a putative class action in Pennsylvania federal court Wednesday over the stolen-and-recovered laptops breach disclosed in January. I’m not finding the complaint in PACER yet. Law360 may have it, but a subscription is required.
USIS parent ordered to turn over security data by House committee Democrats
Well, I’m not sure why their headline says “ordered,” when it’s still an “ask,” but Jill R. Aitoro reports: The parent company and private equity owner of U.S. Investigations Services LLC is being asked by a congressional committee to turn over a laundry list of information about the security of USIS’s computer networks. The Nov. 12 letter…
FTC Alleges Debt Brokers Illegally Exposed Personal Information of Tens of Thousands of Consumers on the Internet
Here’s the FTC’s press release on an enforcement action I had noted on this blog when it originally reported by Courthouse News: At the request of the Federal Trade Commission, a federal court has ordered two debt sellers that posted the sensitive personal information of more than 70,000 consumers online to notify the consumers and…
BrowserStack analysis: unpatched inactive machine compromised by shellshock vulnerability
BrowserStack sent DataBreaches.net the following analysis, which is being emailed to all their users: As you may already know, BrowserStack experienced an attack on 9th November, 2014 at 23:30 GMT during which an individual was able to gain unauthorized access to some of our users’ registered email addresses. He then tried to send an email…