Commentaries and Analyses – Page 784

Why MilitarySingles.com’s denial of breach fails to convince me (updated)

Posted on April 12, 2012 by Dissent

Some breach reports really bother me. The MilitarySingles.com situation is a case in point. Despite their denial of any breach, what I saw in the two data dumps leaves me with the nagging suspicion that they were hacked. And so I contacted them again almost two weeks ago, following their last statement, to ask to…

Future of Data Breach Class Actions After ‘Anderson’

Posted on April 11, 2012 by Dissent

John F. Mullen and Francis X. Nolan IV discuss the state of class action lawsuits over data breaches. Here’s a snippet: In October 2011, the U.S. Court of Appeals for the First Circuit issued its decision in Anderson v. Hannaford, where it denied the defendant grocery chain’s motion to dismiss an action arising from a…

Global Payments’ security FAIL compounded by transparency FAIL?

Posted on April 3, 2012 by Dissent

A data breach doesn’t necessarily have to be fatal to a business but there are entities that seem to shoot themselves in the foot when it comes to breach response. Did Global Payments suffer self-inflicted public relations injury this past week when they didn’t get ahead of the story? And how will their failure to…

Shouldn’t they be hearing this from you instead of me?

Posted on March 29, 2012 by Dissent

As if we needed another reason to disclose breaches in a timely fashion: Some nuclear workers are really upset that the Office of Workers’ Compensation Programs didn’t inform them of the Impairment Resources breach. It seems that they first learned about it from a recent post on this blog. Yeah, that’s no way to find…

MA: Property Management Firm to Pay $15,000 in Civil Penalties Following Data Breach – But Why?

Posted on March 26, 2012 by Dissent

A follow-up to a breach reported on this blog (but not in the mainstream media) in November 2011: A property management firm will pay $15,000 in civil penalties following the theft of a laptop containing the personal information of over 600 Massachusetts residents, Attorney General Martha Coakley announced today. “It is incredibly important that businesses…

Why ‘data breach’ isn’t a dirty word anymore

Posted on March 26, 2012 by Dissent

Elinor Mills has a round-up of quotes from multiple sources that all suggest that having a data breach generally isn’t fatal to a business – although there are, of course, exceptions. Not surprisingly, my favorite quote is from Adam Shostack: “The reason we’re struggling as an industry is that we cover up the failures,” said…