Patients at The Smile Center in St. Paul, Minnesota don’t have much to smile about this week. Bill Keller reports on another disturbing breach – one that reportedly occurred four months ago but victims are first being notified now: Delta Dental is announcing that personal information used in a lawsuit between the company and a…
Category: Of Note
(follow-up) Kr: Regulator plans to discipline Hyundai Capital over hacking
A Hyundai Capital data breach disclosed in April is resulting in consequences from South Korea’s financial regulator. Yonhap News Agency reports: South Korea’s financial regulator decided Wednesday to punish Hyundai Capital Services Inc. for lax computer system maintenance, which led to a major hacking attack at the biggest local consumer finance firm. The Financial Supervisory…
Massachusetts Executive Office of Labor and Workforce Development Reports a Virus Infiltrated the Computer Systems of Agencies tied to Employers, Unemployed Claimants and Career Center Customers
The Executive Office of Labor and Workforce Development (EOLWD) today reported that the Departments of Unemployment Assistance (DUA) and Career Services (DCS) network, individual computer terminals as well as individual computers at the One Stop Career Centers were infected with the W32.QAKBOT virus, a new strain of a computer virus, beginning on April 20, 2011….
President’s cybersecurity agenda includes proposed federal data breach notification law
To cut to the chase: you can read the language of the proposed data breach notification law here. Sadly, the proposed language allows entities NOT to notify affected individuals if they conduct a risk assessment and determine that there is no risk to those whose data were breached. Other problems I see on a first…
UK’s ICO fines ACS:Law for data breach (updated)
John Oates reports: ACS:Law has been fined by the Information Commissioner’s Office for failing to follow data protection law. The one-man law firm, which has since ceased trading, won infamy for using IP numbers to accuse people of illegal file-sharing. Victims received a letter offering to settle the claims rather than go to court. But…
FTC Settles Charges Against Ceridian and Lookout Over 2009 Data Breaches
Two companies that maintain large amounts of sensitive information about the employees of their business customers, including Social Security numbers, have agreed to settle Federal Trade Commission charges that they failed to employ reasonable and appropriate security measures to protect the data, in violation of federal law. Among other things, the settlement orders require the…