Alun Jones reports: Local authorities in Wales broke data protection laws over 60 times in 2012, BBC Wales has learned. In one case a worker allowed their partner to access and amend personal data. There were also several cases of posting personal data on websites, and an e-mail which accidentally disclosed sensitive details of 24…
Category: Commentaries and Analyses
Man who tries to report breach to Sears finds himself talking to someone in India?
Here we go again. It’s bad enough to have an easily avoidable breach. It’s worse when you make it difficult for people to report it to you. Today’s entry in this Hall of Shame is Sears. Nesita Kwan reports personal information of hundreds of former Sears employees, including their Social Security numbers, photos, records with…
Is Chase’s (800) 355-5265 really their fraud detection number? (Spoiler alert: yes)
Yesterday morning, I received a call from an 800-number that was only identified on my Caller ID as “Toll-Free.” I didn’t pick up, but Googled the number and found pages of reports, many of which suggested that the number, presumably for Chase Fraud Detection, was a scam. Others claimed it was for real. Not very…
HALOCK Investigation Finds that 25% of Sampled Colleges and Universities Are Putting Student and Parent Private Financial Data at Risk
Yes, some surveys are self-serving, but this one has some data of interest: Cybersecurity firm, HALOCK Security Labs, found that this back-to-school season may be an ideal time for data thieves to steal the personal and financial information of students and parents. HALOCK found that over 50% of the colleges and universities investigated allow for…
Apple Developer site hack: doubts cast on Turkish hacker’s claims
Charles Arthur reports: A Guardian investigation has cast doubt on claims by a UK-based Turkish researcher that he hacked into Apple’s Developer portal, which has been offline for more than a week. Read more on The Guardian.
The VERIS Community Database
From Verizon: … Verizon is addressing this need by launching a new initiative to collect, organize and publish all publicly disclosed data breaches. The data is coded into VERIS format and available in an interactive dashboard via Tableau Public as well as in individual files in JSON format in a GitHub repository. Both can be reached from the VERIS Community site…