Acting Attorney General John J. Hoffman and the New Jersey Division of Consumer Affairs obtained a settlement with the developer of “Tidbit,” a software code designed to help websites generate revenue by using their viewers’ computers to mine for the virtual currency known as Bitcoin. A New Jersey Division of Consumer Affairs investigation has found…
Category: Of Note
Dutch upper house approves data breach reporting requirement
Telecompaper reports: The Dutch upper house of parliament has approved a legislative amendment on tightening requirements for reporting data breaches and increasing the privacy regulator CBP’s sanctions powers. The lower house approved the legislation in February. Under the changes, a data breach must be reported to the CBP if it impacts security and has a…
100,000 taxpayers’ information accessed in IRS security breach
Associated Press reports: Thieves used an online service provided by the IRS to gain access to information from more than 100,000 taxpayers, the agency said Tuesday. The information included tax returns and other tax information on file with the IRS. The IRS said the thieves accessed a system called “Get Transcript.” In order to access…
What did Adult Friend Finder know and when did they know it? (update 1)
Oh my. DataBreachWallofShame.org posted some of CISO Darknet Group’s attempts to alert Adult Friend Finder back on March 12 that their data had been stolen and were up for sale. The alert was pretty clear, and they got a read receipt – but not actual acknowledgement. Note that their alert made it clear that FFN did not have to…
mSpy and Adult Friend Finder Breaches a Boon to Extortionists
Brian Krebs reports: The recent breaches involving the leak of personal data on millions of customers at online hookup site Adult Friend Finder and mobile spyware maker mSpy give extortionists and blackmailers plenty of ammunition with which to ply their trade. And there is some evidence that ne’er-do-wells are actively trading this data and planning to abuse it for…
North Dakota amends data breach notification law
Christin McMeley and Bryan Thompson write: On April 13 North Dakota Governor Jack Dalrymple signed S. 2214 into law, which amended the state’s data breach statute in an attempt to expand the reach of the state’s notification requirements and the range of businesses subject to them. As the law is currently written, North Dakota’s data breach statute…