AP reports: Nearly 23 million private records of New Yorkers have been exposed in data security breaches reported by more than 3,000 businesses, nonprofits and governments over the past eight years, New York’s attorney general reported. Deliberate hacking was responsible for 40 percent of the 5,000 incidents, which exposed a majority of the records, followed…
Category: Commentaries and Analyses
SingPass breach: time for government agencies to take security more seriously
Alfred Siew reports: Perhaps the worst thing that can happen after the recent SingPass security breach is to assume it cannot happen again. This idea that everything is working fine is foolhardy, after news last week that three of the 1,560 compromised SingPass accounts were used to apply for work permits. Thus it’s disappointing to hear the government saying there are no…
New Research Findings: Miami Identity Fraud Victims Losing Trust in Business, Expect Government Action to Protect Them from Data Breaches
New research released today by the National Consumers League (NCL) and Javelin Strategy & Research reveals disturbing trends for Miami residents who have been affected by data breaches and identity fraud. Nearly half of identity fraud victims are unaware where their information was compromised, while 61 percent of those who were also data breach victims…
Stress, Apathy and Winning by Default: How Consumers Respond to Data Breach Notification Letters
Ozzie Fonseca writes: Data breach notification letters serve multiple purposes. They ensure a breached company is compliant with data breach notification laws, they alert consumers to the breach and their involvement in it, they can warn customers of potential identity theft risks and educate them on how to cope with those risks. The one thing…
Canada: Employer’s Potential Liability In Class Action For Employee’s Breach of Privacy
Ryley Mennie of McCarthy Tétrault LLP writes: A recent decision of the Ontario Superior Court of Justice highlights the increasing focus on (and potential liability arising from) customers’ and clients’ privacy rights and the importance for employers to properly monitor the activities of their employees. Additionally, while the decision comes from Ontario, which, unlike British Columbia, has…
Just in Time Research: Data Breaches in Higher Education
Just in Time Research: Data Breaches in Higher Education This “Just in Time” research is in response to recent discussions on the EDUCAUSE Higher Education Information Security Council (HEISC) discussion list about data breaches in higher education. Using data from the Privacy Rights Clearinghouse, this research analyzes data breaches attributed to higher education. The results…