Cross-posted from PHIprivacy.net: Adam Greenberg reports on two cases where businesses have challenged the FTC’s authority in data security cases. Although Wyndham’s challenge has been discussed in detail on DataBreaches.net (see these posts), I haven’t really described the LabMD case until now. In the LabMD case, the Atlanta Business Chronicle reported last year: The federal agency…
Category: Hack
California Dept. of Consumer Affairs has a breach, but doesn’t notify those affected for 6 months?
Ouch. The California Department of Consumer Affairs – Bureau of Automotive Repair (“BAR”) learned that a service provider had a network intrusion breach that gave someone access to bank account numbers and bank routing numbers belonging to the Smog Check stations licensed by the BAR. The breach reportedly occurred between May 2012 and March 2013,…
Update on Morningstar Document Research breach
Reuters reports: Investment research firm Morningstar Inc said personal information, including credit card details, of about 2,300 users of its Morningstar Document Research service may have been compromised due to a security breach last year. The incident on April 3, 2012 may also have led to the leakage of names, addresses, email addresses and passwords,…
Appeals Court Sends Fiserv Data Breach Case Back to Trial
Robert McGarvey reports that a credit union’s lawsuit against Fiserv has been resurrected by a Tennessee court: The Court of Appeals in Tennessee, in a ruling filed July 3, ruled that a lower court erred when it dismissed a suit filed by Copper Basin Federal Credit Union and CUMIS against Fiserv Inc., wherein the plaintiffs…
Nintendo rewards program site hacked, names, email addresses and phone numbers possibly compromised
Nick Summers reports: Nintendo admitted today that Club Nintendo, a loyalty program that gives players exclusive products in exchange for registering their consoles and games, has been hacked. The company launched an investigation on July 2 after witnessing a “large” number of errors on the site. Nintendo can now confirm that 23,9326 unauthorized log-ins occurred between June…
Chinese University website hacked and personal data stolen
From the South China Morning Post: The personal information of 60 students and teachers in Chinese University’s mechanical engineering department has been stolen and transferred to an overseas website by hackers, police said. Names, login IDs, student and staff numbers and e-mail addresses were stolen from a website for the online submission of work in…