Oscar Williams-Grut reports: Hackers are increasingly targeting “internet of things” devices to access corporate systems, using things like CCTV cameras or air-conditioning units, according to the CEO of a cybersecurity firm. …. Eagan gave one memorable anecdote about a case Darktrace worked on in which a casino was hacked via a thermometer in an aquarium…
Category: Of Note
Seventh Circuit Reinstates Barnes & Noble Data Breach Class Action
Edward J. McAndrew of Ballard Spahr reports: The U.S. Court of Appeals for the Seventh Circuit has reinstated a data breach class action filed against Barnes & Noble (B&N). The litigation, styled as Dieffenbach v. Barnes & Noble, Inc., now heads back to the U.S. District Court for the Northern District of Illinois, which previously dismissed the…
Uber Agrees to Expanded Settlement with FTC Related to Privacy, Security Claims
Uber Technologies, Inc. has agreed to expand the proposed settlement it reached with the Federal Trade Commission last year over charges that the ride-sharing company deceived consumers about its privacy and data security practices. After the announcement of last year’s proposed settlement, the Commission learned that Uber had failed to disclose a significant breach of…
New EU fines will apply to ‘old’ data breaches
Oooh. Pay attention, EU. Peter Teffer reports: Companies operating in the EU that are currently hiding serious data breaches similar to those that rocked Facebook last month better disclose those before 25 May, or be prepared to pay serious fines. On that date, the EU’s new general data protection regulation (GDPR) will come into force….
Companies will now have to tell Canadian consumers when their privacy is breached — and do it quickly
Amanda Connolly reports: After close to three years, the government is finally pushing through regulations that require companies to tell Canadian consumers when their personal information is compromised. The Digital Privacy Actbecame law in August 2015, but several of its provisions were not immediately implemented and have languished on the books pending official authorizations needed…
Virtua Medical Group Agrees to Pay Nearly $418,000, Tighten Data Security to Settle Allegations of Privacy Lapses Concerning Medical Treatment Files of Patients
There’s a follow-up to a breach previously reported on this site in 2016 in which a transcription vendor’s error resulted in the exposure of some Virtua Medical Group’s patients’ protected health information on the internet. It appears that New Jersey has settled charges against VMG over the incident. Of note, the charges are that the VMG…