The Last.fm music site and the eHarmony dating service said some user passwords were stolen, a day after another online company, LinkedIn, confirmed a security breach. “We are currently investigating the leak of some Last.fm user passwords,” the London-based company, which recommends music to listeners, said today on its website. “As a precautionary measure, we’re…
Category: Of Note
AU: Privacy Commissioner finds Act breached by super fund
ABC (AU) reports an update on a situation previously mentioned on this blog where simple url manipulation exposed information: A superannuation company that allowed the private details of its customers to be leaked online has been found to have breached the Privacy Act. In September last year, a flaw was discovered in First State Super’s computer systems,…
Congress critical of TRICARE’s response; requests detailed answers while criticizing TRICARE and SAIC
Cross-posted from phiprivacy.net: At least some members of Congress are not happy with the response to a letter they sent TRICARE following the theft of backup tapes from the unattended vehicle of an employee of their contractor, SAIC. The tapes contained information on approximately 5 million military beneficiaries and their dependents. Although TRICARE’s response was not disclosed publicly, Rep. Ed…
NHS Trust fined £325,000 following data breach; Trust “frankly surprised” at fine and intends to appeal
Back in January, I noted that the ICO was preparing to levy a huge fine on Brighton and Sussex University Hospitals NHS Trust after hard drives with patient data were stolen and put up for sale on eBay. We later learned that the thief was an employee of a contractor. The possibility of the fine was revealed by the…
New Math, data breaches version
As a survivor of New Math, it’s somewhat amazing that I’m willing to deal with numbers or math at all. Yet, here I am, with a simple equation as today’s New Math: UNCC + UN = time for regulation Simple, elegant, and somewhat nonsensical as a math equation, but two recent education sector breaches do…
University of Nebraska breach needs to reverberate in Washington, D.C.
The University of Nebraska disclosed a breach last week, which I dutifully entered on DataLossDB. The breach sounded like it could be huge, despite the university’s statement that it had no evidence (at that time) that any data had been downloaded: The NeSIS database includes Social Security numbers, addresses, grades, transcripts, housing and financial aid…