For Heartland Payment Systems Inc. CEO Robert Carr, the year did not start off well, to say the least. In January, the Princeton, N.J.-based provider of credit and debit processing, payment and check management services was forced to acknowledge it had been the target of a data breach — in hindsight, possibly the largest to…
Category: Commentaries and Analyses
Methinks he might protest too much
As someone who routinely makes snarky pronouncements about breaches, I was actually impressed by how Toronto Hydro handled their recent data breach. Yet some people were strongly critical. The facts of the breach, as I currently understand them are that: 179,000 Toronto Hydro customer account numbers were illegally accessed in the company’s e-billing system. Toronto…
Clarence employees criticized in audit
The Clarence High School principal and other district employees repeatedly used district computers for personal use, the state comptroller’s office said. An audit critical of the district found that some equipment apparently was lost or stolen, while other equipment was taken home, and income tax programs, thousands of photos and music files, detailed medical histories…
Leahy’s data breach bill’s flawed assumptions
The chairman of the powerful U.S. Senate Judiciary Committee, Sen. Patrick Leahy, is trying—after two failed attempts—to get his data breach bill made into law. But even though his bill would answer the pleas of many retailers by creating one single national standard for handling major retail data breaches, the bill’s details don’t deliver the…
Credit industry slow to protect customers from CreditMaster scam
Recent cases in which people have been charged with online fraud for allegedly making purchases with illegally obtained credit card numbers have shed light on the lack of effective measures taken to frustrate the CreditMaster scam used in these incidents, even though the credit card industry was already aware of its existence. The industry is…
Germany adopts stricter data protection law
On July 3, 2009, the German Federal Parliament passed comprehensive amendments to the Federal Data Protection Act (the “Federal Act”). These amendments also passed the Federal Council on July 10, 2009, and the revised law will enter into force on September 1, 2009. The new amendments cover a range of data protection-related issues, including marketing,…