Dean Beeby reports: Canada Revenue Agency workers continue to snoop on the confidential tax files of businesses, acquaintances and others, despite at least $10.5 million spent so far to try to stop them. CBC News has uncovered nine significant cases reported since Jan. 1 in which tax workers improperly poked around the government’s electronic records to…
Category: Commentaries and Analyses
Data Breach Plaintiffs’ Allegations Sufficient for Standing in Employee’s Suit Against CareCentrix
Ted Karch writes: On Monday, the court in Hapka v. CareCentrix, Inc. ruled that employees of CareCentrix whose personal information was compromised have alleged enough harm for standing under Spokeo, Inc. v. Robins. In early 2016, a phishing attack compromised defendant CareCentrix’s systems, revealing personal information of up to two thousand employees. CareCentrix notified the plaintiff of…
Cybercriminals can use leaked pager data to set up victims
Doug Olenick reports: While cartoon crime fighter Kim Possible may be the last character, real or unreal, to regularly use a pager/beeper, Trend Micro is still finding these somewhat old-fashion communication devices that are still in use leak wide variety of private information potentially opening up the users for a conventional cyberattack. The fact is pagers…
Insider breaches dominate in Protenus’s November Breach Barometer
As in previous months, Protenus has summarized what kind of month November was for breaches involving health data. And as the November issue of Breach Barometer makes clear, insider/employee incidents outnumbered external attacks in a month where we first learned of 57 incidents – the largest number of monthly reports this year. One of the main explanations for…
Nearly half of education-vendor websites tested had security problems, audit reveals
Nichole Dobo writes: Nearly half of the more than 1,200 education technology vendor websites used by teachers and students, and checked in an October audit, did not include a secure log-in, according to a new survey. This makes these programs vulnerable to a security breach – a school leader’s nightmare. “We want people to fix this,”…
Facing a Data Breach Suit Without the Data Breach? ‘Scary.’
Roy Strom writes: Chieftains of corporate America have long feared the financial and reputational fallout from a hacking breach. But a class action suit unveiled against a law firm last week could add to their data security anxiety. The suit claims that companies and law firms should be held accountable for lax security measures even if their…