Neil Ford writes: The slow, stately progress of European data protection law continues: last month in Luxembourg, ministers in the Justice and Home Affairs Committee of the EU’s Council of Ministers reached partial agreement on reforms to the General Data Protection Regulation (GDPR). (The GDPR, you’ll remember, will replace the EU Data Protection Directive with a…
Category: Of Note
U.K.: ICO imposes monetary penalty on hotel booking site following SQL injection breach in 2013
A press release from the ICO: The Information Commissioner’s Office (ICO) is warning organisations that they must make sure their websites are protected against one of the most common forms of online attack – known as SQL injection. The warning comes after the hotel booking website, Worldview Limited, was fined £7,500 following a serious data breach where…
FTC Says Debt Broker Disclosed Too Much
Dan McCue reports: Debt broker Bayview Solutions LLC posted the debt portfolios of 28,000 consumers online, including their bank account numbers and other identifying information, the Federal Trade Commission claims in a federal lawsuit. Bayview Solutions was established in 2008 and does business as Bayview Risk Management Capital and Bayview Commercial Recovery. It’s primary business…
TX: Investigation reveals student records from Whitehouse ISD stolen from Louisiana archival service
Ashley Slayton reports: The FBI is investigating a theft of student records at Whitehouse Independent School District. Read more on KLTV A statement prominently linked from the district’s homepage says, in part: PRESS RELEASE: ATTENTION TO ALL MEMBERS OF THE CLASS OF 2011 AND CLASS OF 2012 Whitehouse Independent School District has received notification from…
ND: Audit: Not making security top concern led to NDUS breach
Tu-Uyen Tran reports that an audit conducted in the wake of NDUS’s breach earlier this year found major problems that went far beyond the few employees who were eventually fired: An email a stranger sent to the North Dakota University System’s computer security officer on the morning of Feb. 7 was the first sign that…
Cytta Reports Online Hacking of their Nevada Secretary of State Officer and Director Data
Cytta Corp. (OTCQB: CYCA) wishes to report that it was the victim of an online hacking incident on October 30th, 2014 in that, unauthorized person or persons accessed the Nevada Secretary of State Corporate filing system known as “Silverflume” and surreptitiously altered the Officer and Director information contained therein. This Corporate information is the backbone of numerous very important systems including banking, regulatory and reporting throughout the US. The unauthorized person or…