Jennifer Williams reports: Scores of confidential social services files containing highly personal details about the lives of vulnerable young people – including abuse survivors – have been found abandoned in an empty Tameside office. The extraordinary data breach was discovered by the building’s landlord after drug service contractor Change, Grow, Live (CGL) left a fortnight…
Category: Of Note
Russian hackers involved in largest hacking scheme ever prosecuted in U.S. sentenced
Vladimir Drinkman, the Russian hacker indicted and extradited as part of what was the largest hacking case of its time, was sentenced yesterday to 12 years in prison by a federal judge in New Jersey. Drinkman had pleaded guilty in 2015 to conspiring to hack firms including Heartland Payment Systems Inc., 7-Eleven, and Hannaford Bros., and Jet Blue. Dmitriy Smilianets,…
ICE lawyer in Seattle charged with stealing immigrants’ identities
AP reports: The chief counsel for U.S. Immigration and Customs Enforcement in Seattle has been charged with stealing immigrants’ identities. Raphael A. Sanchez, who resigned from the agency effective Monday, faces one count of aggravated identity theft and another of wire fraud in a charging document filed Monday in U.S. District Court. Prosecutors with the…
Consequences for HIPAA violations don’t stop when a business closes
There’s a new settlement announcement from HHS OCR that makes clear that even if an entity closes its doors, any HIPAA enforcement action continues: A receiver appointed to liquidate the assets of Filefax, Inc. has agreed to pay $100,000 out of the receivership estate to the U.S. Department of Health and Human Services (HHS) Office…
Education Department Toughens Tone on Cyber and Threatens to Pull Funding for Non-Compliance
Sara A. Arrow and Craig A. Newman Recently-issued guidance from the U.S. Department of Education (ED) threatens to “yank” Title IV funding for post-secondary institutions lacking appropriate data security safeguards. The guidance comes as the risk of educational data breaches has intensified, as we have previously reported. The stakes are even higher now that ED…
AMP Global Clearing LLC fined for lax security
A monetary penalty resulted from a misconfigured backup uncovered by Chris Vickery, who was then with Kromtech Security. It was reported publicly in April, 2017 by a number of outlets, including The Daily Dot. This was one of those cases where a vendor’s mistake turned out to be costly. The Commodity Futures Trading Commission (CFTC)…