Mark S. Melodia, Steven Boranian, Frederick Lah and Melissa A. Geist comment on the AvMed breach lawsuit settlement. The AvMed breach involving a stolen laptop with unencrypted information on 1.2 million people and lawsuit have been mentioned numerous times on the companion PHIprivacy.net blog (coverage linked from here). Last week, a judge for the Southern District…
Category: Of Note
Weds: House Financial Services subcommittee to hold hearing on data breaches
Julian Hattem reports: Data security will be back in the spotlight on Wednesday, when a House Financial Services subcommittee hears from top law enforcement, consumer advocacy and industry experts. The hearing will be the fifth Congress has held since Target revealed late last year that a hacker had stolen millions of users’ information during the…
Thieves Jam Up Smucker’s, Card Processor (update 1)
Brian Krebs reports: Jam and jelly maker Smucker’s last week shuttered its online store, notifying visitors that the site was being retooled because of a security breach that jeopardized customers’ credit card data. Closer examination of the attack suggests that the company was but one of several dozen firms — including at least one credit card processor — hacked…
Commentary: Repeated insider breaches at TD Bank should trigger federal regulator investigation (update 1)
Update 1: March 9, 2014: Added some other incidents that were reported to NYS in 2012 and early 2013. These additions are underlined for your convenience. In the process of reviewing other materials, I have also identified two other banks that have recurring reports of insider wrongdoing. Eventually, I will write up my findings on…
Sands Update: Hackers stole personal information of tens of thousands of Pennsylvania casino patrons
Hannah Dreier of Associated Press reports: Computer hackers stole the personal information of tens of thousands of Las Vegas Sands customers during a data breach earlier this month, the casino company said Friday. The company said in a regulatory filing that information about some patrons at its Bethlehem, Pa., hotel-casino was compromised during the Feb….
Sears, Secret Service Said to Investigate Possible Data Breach, but Sears Says There’s No Evidence of Breach
Michael Riley reports: The U.S. Secret Service is investigating a possible security breach at Sears Holdings Corporation, after a series of cyber attacks on retailers that have exposed the credit-card data of millions of U.S. consumers, according to a person familiar with the investigation. Read more on Bloomberg.com. The Chicago Tribune has a response from…