Lesley Fair of the FTC writes: Kids love to play dress-up, but parents wouldn’t want them rummaging through the attic or climbing to the top shelf of the wardrobe without permission and proper supervision. The i-Dressup.com website offered users – including children – a virtual way to play dress-up and design clothes without those potential…
Category: Of Note
MA: Medical billing service notifies patients of ransomware incident
Massachusetts-headquartered Doctors’ Management Service, Inc. provides medical billing services to physicians and hospitals. You may never have heard of them, but your hospital or physician might have provided them with your protected health information if your doctor or hospital contracts with them. This week, DMS sent notice of what they strangely describe as a “recent…
Marcus Hutchins’ plea leaves unsettled whether writing certain types of code is illegal – Ekeland
In May, 2017, a young man from the U.K. became known as an “accidental hero” for saving the world from the further spread of WannaCry ransomware. But months later, this same hero, Marcus Hutchins, known online as @MalwareTech, was arrested in the U.S. as he tried to fly home after attending the Black Hat and…
Washington AG Ferguson bill strengthening data breach laws passes Legislature
From the Washington Attorney General’s Office yesterday, a press release on an expansion of the breach notification requirements. Of special note, under the new law, a hacker acquiring a name in combination with a student ID would trigger notification obligations, but only if the information was not secured or made unusable (e.g., by encryption) AND …
Italy’s DPA Fines Data Processor for Information Security Failures
Odia Kagan of FoxRothschild writes: Caveat Data Processor. Italian Data Protection Authority, Garante, has issued a 50,000 EUR fine against a data processor platform for its failures to implement several information security measures. Service providers should ensure that the data entrusted to them by their data controller customers is adequately protected. Read more on Privacy…
MD Anderson ousts 3 scientists over concerns about Chinese data theft
Todd Ackerman reports: MD Anderson Cancer Center is ousting three scientists in connection with concerns China is trying to steal U.S. scientific research, the first such publicly disclosed punishments since federal officials directed some institutions to investigate specific professors in violation of granting agency policies. MD Anderson took the actions after receiving e-mails last year…