Swati Khandelwal reports: Once again, Syrian Electronic Army (SEA) has gain media attention by compromising a number of popular web hosting brands of one of the leading web-hosting companies Endurance International Group INC that manages over 60 different hosting brands. SEA, a pro-hacker group supposed to be aligned with Syrian President Bashar al-Assad, is famous for hacking…
Category: Of Note
Florida Department of State exposes non-confidential voter information (updated)
Update: The Florida Department of State issued a statement on March 31 confirming the breach. That statement appears elsewhere on this site. Under the language of their statute, addresses are not considered “confidential” information, and the state has asked DataBreaches.net to make clear that this did not involve confidential information, as “confidential” is defined by…
Ontario’s sole health privacy prosecution quietly dismissed
Olivia Carville reports: The first person ever prosecuted under Ontario’s health privacy law for allegedly prying into almost 6,000 patient records no longer faces charges because of the “curious” way the Crown handled the case, a court has ruled. Against a backdrop of growing calls for more prosecutions under this law, the potentially precedent-setting case…
UK: ICO to make enquiries about sale of pension data
From the ICO: Allegations have been made about firms passing on sensitive financial data, including pension information, which is being used by cold calling companies. An ICO spokesperson said: “We’re aware of allegations raised against several companies involved in the cold calling sector, and will be making enquiries to establish whether there have been any…
Personal details of world leaders accidentally revealed by G20 organizers
And once again, a freedom of information request uncovers a breach. Paul Farrell reports: The personal details of world leaders at the last G20 summit were accidentally disclosed by the Australian immigration department, which did not consider it necessary to inform those world leaders of the privacy breach. The Guardian can reveal an employee of the agency…
Allegations of Indirect Access Held Insufficient To State Claim Under CFAA – Court
David J. Clark of Epstein Becker & Green, P.C., writes: On March 20, 2015, a California federal court rejected an expansive reading of the Computer Fraud and Abuse Act (“CFAA”) urged by two plaintiff corporations that sought to hold a competitor and two of its directors liable under the CFAA, under an agency theory, for the actions…