There’s an update to the Savannah River Site (USDOE) breach reported back in March, but I don’t know that it really clarifies that much. Mike Gellatly reports: The personal information of some 12,000 Savannah River Site employees stolen earlier this year was not “improperly distributed,” though it was found in the hands of a Site…
Category: Government Sector
Amazon Web Services does the right thing
Following up on my blog post concerning a data leak reported by BeyondRecognition.net, I just received an email from AWS stating that they have removed the Enron Email Data Set from their platform, making it unavailable for download and use. I am delighted to hear this. Of course, this doesn’t stop EDRM from hosting it…
Mo. House Speaker defends attempt to hack into state’s list of concealed weapons permits
Associated Press reports: The Speaker of the Missouri House says an attempt to access a secure website listing Missouri’s concealed gun permit holders was part of an investigation into whether the state had appropriately shielded the information. In an interview with The Associated Press, House Speaker Tim Jones, R-Eureka, declined Monday to identify the person…
AU: Grave security breach of confidential police information puts informants at risk
Anthony Dowsley reports: The lives of informers and police officers have been put at risk over the “gravest” of leaks from inside the force. Police raids across Melbourne three weeks ago discovered volumes of confidential and sensitive police files dating back three years. So far, a junior police officer from the northern metro region has…
Lessons from EDRM/FERC/Enron Data Privacy Breaches (updated)
Thanks to Joe Howie of BeyondRecognition.net for alerting me to what appears to be a very long-running, inadequately remedied breach that has exposed – and may be continuing to expose – the Social Security numbers and other personal information of thousands of people. I am posting this with some hesitation, as the data may still…
Belgian Privacy Commission refers data breach case to Public Prosecutor
On April 29, 2013, the Belgian Privacy Commission announced that it referred a data breach case involving The National Belgian Railway Company to the Brussels Public Prosecutor. The data breach, which occurred in December 2012, resulted in the 1.46 million sets of customer data being made publicly available online. The Privacy Commission investigated the case…