Okay, here’s a breach I never saw reported anywhere in my usual sources, until I read about it in a lawsuit. Via Courthouse News’ Joe Harris: A hospital and cancer center allowed a laptop computer stuffed with unencrypted, confidential information on its patients to be stolen, and did not notify patients of the data theft…
Category: Of Note
PBS says its website has been hacked for the 2nd time in a month, with little data stolen (but there were lots of data stolen, it seems – Update 3)
Associated Press reports: PBS says its website has been hacked for at least the second time in a month — the latest in a string of intrusions into such sites as Sony, Lockheed Martin, Nintendo and others. PBS spokeswoman Anne Bentley says one section of a website in the Public Broadcasting Service’s collection of sites…
RxAmerica and Accendo Insurance notify 175,000 Medicare beneficiaries that mailing error exposed their medication name, date of birth, and member ID
RxAmerica and Accendo Insurance Company, providers of drug benefits to eligible beneficiaries under the Medicare Part D program, issued the following statement today regarding a recent patient information issue: “RxAmerica and Accendo Insurance Company have notified Medicare Part D beneficiaries enrolled in the company’s Prescription Drug Plans that some of their personal information may have…
Citi skimps on “standard” customer monitoring after security breach
Reuters reports: After a massive data breach last month, Citigroup did not offer its hacked clients the same degree of identity-theft protection that many other companies provide, drawing criticism from privacy advocates. Citigroup, which had over 360,000 credit card accounts exposed last month, sent letters to affected customers this month with advice on protecting themselves…
Arizona Department of Public Safety hacked; LulzSec starts to reveal data reportedly acquired
With each day, LulzSec seem more and more to be “hactivists.” Today, they revealed what seems clearly to be a politically motivated hack/compromise. From their press release: We are releasing hundreds of private intelligence bulletins, training manuals, personal email correspondence, names, phone numbers, addresses and passwords belonging to Arizona law enforcement. We are targeting AZDPS specifically because…
All UK firms to face mandatory data breach notification regime
Dan Worth reports: All businesses in the UK that store data on customers will soon have to disclose any breaches, as the European Commission looks to widen the scope of recent changes to data protection laws. Speaking at the British Bankers’ Association (BBA) Data Protection and Privacy Conference in London on Monday, European Union justice…