Matthew J. Siegel of Cozen O’Connor writes: A split continued to develop in the federal courts last month as the Fourth Circuit denied Article III standing to the plaintiffs in a data breach case whose alleged injuries were limited to the increased risk of future identity theft and the cost of measures to protect against…
Category: Commentaries and Analyses
More reports of false tax returns in wake of W-2 phishing scams
One of the many companies who became victims of W-2 phishing this year is Berkley Mid-Atlantic Group, a property and casualty insurance firm with headquarters in Virginia. DataBreaches.net became aware of their incident when contacted by a former employee. According to BMAG’s notification to employees dated March 10, they had no then-current evidence of any misuse of employees’…
Summit Reinsurance issues notice of breach discovered in August
Regular readers will realize that I’ve been reporting on the Summit Reinsurance breach since it first appeared in a covered entity’s disclosure back in November. Since then, I’ve been compiling and/or reporting on other entities affected by the ransomware attack that they discovered August 8, 2016. So seven months after discovery, they are first issuing a public…
Chinese police make 96 arrests in latest operation against personal data theft
Laura Zhou reports: Chinese police have arrested 96 suspects over data theft, in a case that exposes the challenges facing the country from a rampant trade in citizen’s private information, the state broadcaster reported. In one of the biggest operations of its kind, police raided sites in 14 provinces including Anhui, Henan and Liaoning, as…
Law Firm Sued for Alleged Lax Data Security Avoids Class Action
Derek Borchardt and Michael F. Buchanan have an update on litigation previously noted on this site. At its heart, a lawsuit claimed a Chicago law firm, Johnson & Bell, had inadequate data security. There was no allegation of any actual breach – the suit was over inadequate data security. Back in December of last year, we reported that for the…
Study: Healthcare Organizations Are Top Targets for Hackers – 68% Have Compromised Email Credentials
Presser, but has some interesting findings: Evolve IP, The Cloud Services Company™, today released the results of a study of Dark Web email vulnerabilities in the healthcare industry. The research, conducted in a collaboration between Evolve IP and ID Agent, reveals the pervasive nature of email-based cybersecurity attacks and sheds light on the quantity, variety, sources…