Kelley Shannon reports: Texas Comptroller Susan Combs revealed Monday that the personal information of 3.5 million people has been inadvertently disclosed by her agency, making Social Security numbers, dates of birth and other data accessible to the public. The information was available on a publicly accessible computer server and included data transferred by the Teacher…
Category: Of Note
Hyundai Capital in South Korea to notify 420,000 customers of data breach; Financial watchdog opens investigation
Ju-min Park of Reuters reports: South Korea’s financial watchdog launched an investigation on Monday into the leak of personal information from South Korea’s Hyundai Capital, the consumer finance unit of Hyundai Motor Group, a Financial Supervisory Service official said. Hyundai Capital said personal information on about 420,000 of its 1.8 million customers was leaked when…
Data Breach Notification Laws Influence Storage Location Decisions
Mathew J. Schwartz reports: Many companies that look to process and store sensitive data — including intellectual property — abroad as a cost-cutting measure are seeking countries with minimal data breach notification requirements, according to a survey of 1,000 senior IT decision makers by market research firm Vanson Bourne. The survey was sponsored by Intel’s…
And the hits just keep on coming for Epsilon
Note: CBS reports that the Secret Service is investigating the Epsilon breach. If you receive a phishing attempt that you want to report to the Secret Service, email [email protected]. You can also file a report at http://www.ic3.gov/default.aspx. I’ll add businesses to the list of affected customers as I become aware of them, so check back if…
A Rash of Third-Party Data Breaches Takes a Toll on Businesses and Customers (update2)
Last month I reported that both Play.com and Maine’s Dept. of Conservation had been hit by breaches at their third-party vendors. Game Show Network (GSN) customers were also notified of a breach at a third-party vendor, but I didn’t report it at the time because I was trying to get confirmation from the company whether the…
When it comes to compiling breaches, more is better
As announced by the good folks at DataLossDB.org today, I’ve agreed to work with them in terms of maintaining and developing their database. DataBreaches.net and PHIprivacy.net will continue as they always have, but expect to see more breaches show up in DataLossDB in a timely fashion and expect to see more backfilling over time and…