Frederik Borgesius made me aware of this paper of note: Data Breaches in Europe: Reported Breaches of Compromised Personal Records in Europe, 2005‐2014 Philip N. Howard CMDS Working Paper 2014.1 Center for Media, Data and Society School of Public Policy Central European University October, 2014 From the Executive Summary, the major findings over the past…
Category: Of Note
Huge Data Leak at Largest U.S. Bond Insurer
Brian Krebs writes: On Monday, KrebsOnSecurity notified the Municipal Bond Insurance Association — the nation’s largest bond insurer — that a misconfiguration in a company Web server had exposed countless customer account numbers, balances and other sensitive data. Much of the information had been indexed by search engines, including a page listing administrative credentials that attackers could use to…
Vulnerable Disclosures obtains information on 10 banks breached
Vulnerable Disclosures – a blog that seems to be re-posting some of my work from here and from PHIprivacy.net without any permission or even attribution – posted this: Russian hackers have posted information on 10 US banks that have been breached in the past week and a half and are threatening to post additional information. Vulnerable Disclosures…
Hackers use Reddit to hijack 17,000 Apple computers (see update)
Sophie Curtis reports: Hackers are reportedly exploiting a flaw in Apple’s desktop operating system, Mac OS X, to take remote control of thousands of Apple computers around the world. Researchers at Russian antivirus company Dr Web said in a report that more than 17,000 Macs – 1,227 of which are in the UK – have been infected…
California’s Latest Amendments to Its Data Security Breach Notification Law – Much Ado about Nothing?
Tanya Forsheit and M. Scott Koller of BakerHostetler have a good write-up of the new provisions in California law and how the language of AB 1710 has led to some confusion as to whether California now requires breached entities to offer free credit monitoring protection for 12 months if certain types of personal information are…
UPDATE: JP Morgan reveals data breach affected 76 million households and 7 million small businesses
Olivia Levoy of USA Today reports: The cyberattack on JP Morgan Chase & Co. first announced in July comprised information from 76 million households and 7 million small businesses, the company revealed in a filing with the Securities and Exchange Commission Thursday. Contact information, including name, address, phone number and email address, as well as…