The following was originally posted to PHIprivacy.net. The carousel image for this post reflects 2011 statistics from DataLossDB and is used with permission. Note that healthcare sector breaches account for a smaller percentage of total breaches reported in 2011 compared to 2010 while business sector breaches account for a larger percentage of total breaches compared to…
Category: Of Note
Virginia Commonwealth University alerts 176,567 faculty, staff, students and affiliates to hacking incident
A notice was posted today on Virginia Commonwealth University’s web site: To the VCU and VCU Health System communities: A security incident has resulted in unauthorized access to a Virginia Commonwealth University computer server containing files with personal information on current and former VCU and VCU Health System faculty, staff, students and affiliates. We believe the…
Steam database hacked; extent of breach still unclear
Steam Forums has issued a statement concerning a November 6 intrusion. Their notice reads: Dear Steam Users and Steam Forum Users: Our Steam forums were defaced on the evening of Sunday, November 6. We began investigating and found that the intrusion goes beyond the Steam forums. We learned that intruders obtained access to a Steam…
Fannie Mae notifies 1,100 of a security breach – but it’s a puzzlement
On October 28, Fannie Mae notified the New Hampshire Attorney General’s Office of a security incident involving personal information of over one thousand individuals. In their letter, they explain that in mid-October, they became aware that an employee may have been attempting to sell handwritten copies of the financial information of approximately 1,100 people. The…
AU: Computershare ‘breach’ a lesson in information larceny (UPDATED)
Leonie Woods reports: The privacy and financial records of millions of shareholders who use Computershare’s global share registry system were placed at risk this year when a Boston employee quit the company, allegedly taking with her thousands of pages of highly sensitive and confidential documents. [See UPDATE below]. The employee resigned in September last year…
500,000 e-mail addresses and passwords acquired: Adidas websites go offline after security breach (UPDATED)
Last night, a regular reader of this blog contacted me about the Adidas breach. I told him, and repeat now, that it’s not clear whether any personal information was involved, which is why I held off on posting anything about. As of this morning, the company doesn’t think personal data has been accessed or acquired,…