Palm Springs Federal Credit Union has been notifying its members after an external drive with their names, addresses, Social Security numbers, and account numbers was lost on or about October 20. In a letter to those affected, CEO Debbie Pitigliano writes that the CU was required to provide the data as part of its regulatory obligation for audits,…
Category: Financial Sector
FTC Says Debt Broker Disclosed Too Much
Dan McCue reports: Debt broker Bayview Solutions LLC posted the debt portfolios of 28,000 consumers online, including their bank account numbers and other identifying information, the Federal Trade Commission claims in a federal lawsuit. Bayview Solutions was established in 2008 and does business as Bayview Risk Management Capital and Bayview Commercial Recovery. It’s primary business…
Luck Played Role in Discovery of Data Breach at JPMorgan Affecting Millions
Matthew Goldstein and Nicole Perlroth report: When it comes to defending a large company against an online attack, sometimes luck and timing can mean as much as spending hundreds of millions of dollars a year on computer security. The broad attack this summer on JPMorgan Chase, which compromised information for 76 million households and seven…
Former federal IT contractor sentenced for disabling Fannie Mae website after his employment terminated
On October 10, the Office of the Special Inspector General for the Troubled Asset Relief Program (SIGTARP) today announced that Sathish Kumar Chandhun Rajendran, 36, of Sterling, Va., was sentenced on October 3, 2014, for engaging in unauthorized access to government servers that hosted a Fannie Mae website used to support federal mortgage loan modification…
Quebec court rules in lost personal data case: no fraud, no theft, no class action
Prachi Shah of Clyde & Co. provides an update on litigation stemming from a lost device case previously noted on this blog: Paul Sofio v. OCRCVM (IIROC), 2014 QCCS 4061 (under appeal) – The Quebec Superior Court refuses to authorize a class action where the loss of personal data did not result in fraud or identity…
Capital One notifies customers that rogue employee accessed their information
As Attorney General Kamala Harris’s annual data breach report noted, some breach notifications are written on a level that exceeds the average consumer’s reading level. Here’s one from Capital One that’s in a bit more plain English: We’re writing to let you know that your personal information may have been compromised. A former employee, while still…