Rebecca Rosenberg reports an update to a case first noted in June, 2015: The leader of an identity theft ring that used stolen patient records purchased from a crooked hospital employee to pull off shopping sprees at major Manhattan department stores took a plea deal Monday. Fernando Salazar, 28, admitted to buying the records of 250 Montefiore…
Category: Insider
UBS wins $1.1M from Wells Fargo in insider data theft case
William Sprouse reports the outcome of an arbitrated insider data breach case where a departing employee allegedly took client data with him to his new employer. I don’t think this case was ever covered on this site before, but Law360 had reported the lawsuit back in 2012. Sprouse reports: A FINRA arbitration panel ruled a…
UK: Tesco call centre worker fined over customer data breach
So what do you think the penalty/fine should be for an employee wilfully emailing themselves customer data that they had no business copying and taking? Jail time? A monetary penalty? Community service? Keep in mind that the defendant had to return from Lithuania to be sentenced. Sounds serious, right? BBC reports that Thomas Wengierow, 47, who…
Insider breach – Shapeshift’s story
@SwiftonSecurity kept telling everyone on Twitter that we #MUSTREAD the story of what happened at Shapeshift.io. And with good reason: it’s a phenomenal account of an insider breach told with the kind of refreshing honesty that’s often missing in most breach disclosures. It also reads like a thriller. I’m going to give readers a different…
SG: Ex-staff sergeant jailed for abetting unauthorized data access and other crimes
Elena Chong reports on a case in Singapore where a police officer in the Clementi police division of the Singapore Police has been sentenced to jail for soliciting a colleague who then accessed the the Immigration and Checkpoints Authority’s computer system to check on a friend’s former boyfriend. Rishinder, a Singapore permanent resident, was yesterday sentenced…
UK: Met officers ‘hacked database to leak name of protected witness’
Another “small breach with huge potential impact.” Press Association reports: Police detention officers leaked the identity of an anonymous witness in a murder trial after hacking into the intelligence database, a court has heard. Rupert Ross, 34, and Leon De St Aubin, 38, were both sentenced to life imprisonment for the “vicious execution” of Darcy…