Associated Press reports: A $10 billion-a-year effort to protect sensitive government data, from military secrets to Social Security numbers, is struggling to keep pace with an increasing number of cyberattacks and is unwittingly being undermined by federal employees and contractors. Workers scattered across more than a dozen agencies, from the Defense and Education departments to…
Category: Of Note
AL: Records containing minor’s sensitive information were publicly available through Birmingham City Schools website
Madison Underwood reports that hundreds of records containing minor’s sensitive information – names, birthdates, phone numbers and more – were publically available online at a website operated by Birmingham City Schools. Read more on AL.com. Would this be a good time to remind everyone that Alabama is one of only a few states that does not…
Should the FTC Be Regulating Privacy and Data Security?
Daniel Solove and Woodrow Hartzog write: This past Tuesday the Federal Trade Commission (FTC) filed a complaint against AT&T for allegedly throttling the Internet of its customers even though they paid for unlimited data plans. This complaint was surprising for many, who thought the Federal Communications Commission (FCC) was the agency that handled such telecommunications issues. Is…
New GDPR Data Breach Notification Agreement Sparks Debate
Neil Ford writes: The slow, stately progress of European data protection law continues: last month in Luxembourg, ministers in the Justice and Home Affairs Committee of the EU’s Council of Ministers reached partial agreement on reforms to the General Data Protection Regulation (GDPR). (The GDPR, you’ll remember, will replace the EU Data Protection Directive with a…
U.K.: ICO imposes monetary penalty on hotel booking site following SQL injection breach in 2013
A press release from the ICO: The Information Commissioner’s Office (ICO) is warning organisations that they must make sure their websites are protected against one of the most common forms of online attack – known as SQL injection. The warning comes after the hotel booking website, Worldview Limited, was fined £7,500 following a serious data breach where…
FTC Says Debt Broker Disclosed Too Much
Dan McCue reports: Debt broker Bayview Solutions LLC posted the debt portfolios of 28,000 consumers online, including their bank account numbers and other identifying information, the Federal Trade Commission claims in a federal lawsuit. Bayview Solutions was established in 2008 and does business as Bayview Risk Management Capital and Bayview Commercial Recovery. It’s primary business…