Wills Robinson reports: A Department of Education employee left government computers vulnerable to hacking after downloading a virus while searching for ‘naked toddlers’, ‘little boys’, a and references to child rape, a report has revealed. Documents obtained through a Freedom of Information Act request by DailyMail.com show the staffer typed in at least 18 illicit…
Category: Commentaries and Analyses
Data Breach Disclosure Is Still Taking Too Long, Report Reveals as GDPR Looms
Graham Cluley explains: The accepted wisdom in the field of cybersecurity is that things are getting worse, and that more businesses are losing control of more data than ever before. What a bunch of pessimists we are… The truth, however, might be rather different. A new study published by Risk Based Security has examined the…
Ph: Privacy commission orders Jollibee to suspend online delivery services over data breach
Ted Cordero reports: The National Privacy Commission (NPC) on Tuesday ordered fast-food giant Jollibee Foods Corp. to suspend its online delivery platform indefinitely due to a data breach reported by the company in December last year. The NPC ordered Jollibee to suspend the operations jollibeedelivery.com and all other data processing open to the public through…
Remember your baby’s newborn pictures? They may still be online.
UPDATED April 23, 2021: Apparently people find this news article in Google search results and then contact me via email or phone to ask about getting their newborn’s photos. This is a news article written in 2018. Neither I nor DataBreaches.net have your baby’s photos. Do not call me or email about them as I…
Equifax lets identity thieves raid “frozen” credit reports through its shady, obscure secondary credit bureau
Remember all that advice that I and Brian Krebs tend to give consumers about putting “freezes” on your credit reports instead of “alerts?” The freezes are supposed to prevent entities from opening up any new lines of credit or accounts in your name. They are supposed to prevent problems instead of just detecting problems after…
Protection of Patient Health Information at Navy and Air Force Military Treatment Facilities
Audit: DODIG-2018-109 (pdf) From the audit’s findings: Officials from the DHA, Navy, and Air Force did not consistently implement security protocols to protect systems that stored, processed, and transmitted EHRs and PHI at the locations tested. Specifically, we identified issues at the Naval Hospital Camp Pendleton; San Diego Naval Medical Center; USNS Mercy; 436th Medical…