Settlement Follows Investigation Finding That Adult Dating Website Maintained Lax Security Practices, Misled Consumers About Its Data Security, And Created Fake Female Profiles To Entice Male Users In Addition to Penalties, Settlement Requires The Website To Implement Stronger Data Security Program And Cease Deceptive Practices NEW YORK—Attorney General Eric T. Schneiderman joined twelve other states,…
Category: Of Note
Data breach affects Frederick County schools (UPDATED)
WMAR reports: A data breach may have affected up to 1000 students at Frederick County Public Schools (FCPS) officials said. The breach impacted students who attended FCPS between November 2005 and November 2006. The breached information includes names, social security numbers and birth dates. AP adds important details that the breach was brought to the school…
Data enrichment records for 200 million people up for sale on the Darknet
Steve Ragan reports: Full data enrichment profiles for more than 200 million people have been placed up for sale on the Darknet. The person offering the files claims the data is from Experian, and is looking to get $600 for everything. Details of this incident came to Salted Hash via the secure drop at Peerlyst, where…
Facing a Data Breach Suit Without the Data Breach? ‘Scary.’
Roy Strom writes: Chieftains of corporate America have long feared the financial and reputational fallout from a hacking breach. But a class action suit unveiled against a law firm last week could add to their data security anxiety. The suit claims that companies and law firms should be held accountable for lax security measures even if their…
Massive Australian Taxation Office data loss feared after Hewlett Packard Enterprise equipment crash
Fleur Anderson and Paul Smith report: The Australian Taxation Office has restored access to some of its online services, but concerns remain that large amounts of data have been lost after it suffered a “world-first” technical glitch to equipment from Hewlett Packard Enterprise more than 24 hours earlier. Tax officials were reportedly told to work…
PwC sends ‘cease and desist’ letters to researchers who found critical flaw
Zack Whittaker reports: A security research firm has released details of a “critical” flaw in a security tool, despite being threatened with legal threats. Munich-based ESNC published a security advisory last week detailing how a remotely exploitable bug in a security tool, developed by auditing and tax giant PwC, could allow an attacker to gain unauthorized access…