There’s a somewhat interesting follow-up to a situation DataBreaches.net first reported in February. Back then, DataBreaches.net had reported that 22,000 patients from several health care providers had their PHI exposed on an FTP server that Patterson Dental used to provide support documentation for its Eaglesoft software. That report was based on information and screenshots provided by a researcher….
Category: Commentaries and Analyses
Dutch privacy regulator receives 3,400 data breach reports
Telecompaper reports: The Dutch Data Protection Authority (Autoriteit Persoonsgegevens – AP) has received 3,400 reports of data leaks since new rules on reporting such incidents took effect 01 January. AP vice chairman Wilbert Thomesen told BNR that this was not considered a high amount, given the around 135,000 businesses and organisation handling personal data that…
LabMD files for stay of FTC order
As expected, LabMD is seeking a stay of the FTC’s order while they appeal the Commission’s final order to a federal court. As I was reading their application, one particular footnote caught my eye, as it relates to the purpose of the raid on Tiversa that this site reported back in March. 3 The FBI raided Tiversa headquarters in Pittsburgh, Pennsylvania,…
AU: Child services breaches foster kids’ privacy at least 58 times: report
Beau Donelly reports: A car was doused in petrol in one of six “significant” cases where children or carers were put in danger as a direct result of the leak-plagued child protection department’s own breaches, a review has uncovered. The state government has put vulnerable children and foster carers “at direct risk of harm” at least 58 times in the…
Data Breaches Lead To Over 1 Billion Records Exposed In The First Half of 2016
Risk Based Security reports: Risk Based Security and RPS Executive Lines are pleased to announce the release of the latest installment of the Data Breach QuickView Report. The MidYear 2016 Report shows that, while the number of data breaches for the year is down approximately 17% compared to the same time last year, the number…
FTC Blog Post Outlines How NIST Cybersecurity Framework Relates to FTC Data Security Program
A new blog post from the Federal Trade Commission provides guidance to businesses on how the cybersecurity framework created by the National Institute for Standards and Technology (NIST) aligns with the FTC’s data security program. The post outlines the key elements of the NIST framework and how it relates to the FTC’s long-standing approach to data security….