The new Ponemon study, 2011 Cost of a Data Breach Study has some interesting findings. From the executive summary: The cost of a data breach declined. For the first time in seven years, both the organizational cost of data breach and the cost per lost or stolen record have declined. The organizational cost has declined from…
Category: Of Note
Police look into firm’s database of private info…. on 150 million! (updated)
We saw reports on some huge data breaches out of China last summer. Some of them, we learned, were not necessarily hacks but employees leaking data. Here’s another report of people allegedly behaving very badly. Xu Chi reports: Shanghai police are investigating a local company that reportedly illegally collected private information of more than 150…
HHS settles HIPAA case with Blue Cross Blue Shield of Tennessee for $1.5 million following theft of 57 computer drives
From HHS: Blue Cross Blue Shield of Tennessee (BCBST) has agreed to pay the U.S. Department of Health and Human Services (HHS) $1,500,000 to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules, Leon Rodriguez, Director of the HHS Office for Civil Rights (OCR), announced today. BCBST…
NZ: Privacy breach on 9000 ACC claims (updated)
Phil Kitchin reports on a breach involving sensitive personal information in New Zealand: Private details of more than 9000 ACC claims – some featuring well-known people – have been emailed to a person who should not have received them, in what is being described as one of the worst privacy breaches in New Zealand history….
A horrific privacy breach averted, but why did Anonymous remain silent? (UPDATED)
I couldn’t fall asleep last night. It’s not often that a data breach worries me, but what I read online had concerned me. According to a hacker calling himself @PabloEscobarSec, he had hacked the British Pregnancy Advisory Service (BPAS), and intended to leak the names of all of the women who had used the service….
Twitter yanks @LindenLeaks account, but some damage was already done
Russell Korando reports on a university data breach that demonstrates why universities need to nail down security and access to education records: LindenLeaks is no longer posting information about Lindenwood University or its students on Twitter. Sometime early Wednesday, the Twitter account stopped publishing. Lindenwood officials, St. Charles police and the St. Charles County Cyber…