Occasionally, we find out about a data breach via court filings instead of notifications or media coverage. This is one of those times, it seems. As far as I can determine, the incident discussed in the court case was not reported to the NYS Consumer Protection Board by either Cambridge Who’s Who or Proactive Technology…
Category: Of Note
(update) Hacker accessed HuskyDirect.com database by using vendor’s administrative password
On January 31, lawyers for the University of Connecticut Cooperative Corporation notified the New Hampshire Attorney General’s Office of a breach mentioned previously on this blog. Their letter revealed some previously unreported details, including the fact that the HuskyDirect.com web site was hosted and managed by Fuss & O’Neill Technologies LLC in Connecticut, a firm that does business…
FINRA Imposes Fines Totaling $600,000 Against Lincoln Financial Securities and Lincoln Financial Advisors for Failure to Protect Confidential Customer Information
The Financial Industry Regulatory Authority (FINRA) announced today that it has imposed fines of $450,000 against Lincoln Financial Securities, Inc. (LFS) and $150,000 against an affiliated firm, Lincoln Financial Advisors Corporation (LFA), for failure to adequately protect non-public customer information. In addition, LFS failed to require brokers working remotely to install security application software on…
HHC Press release on backup tapes stolen from GRM van
The following statement was issued by Health and Hospital Corporation yesterday concerning a breach reported on this blog earlier today: The New York City Health and Hospitals Corporation (HHC) this week began to notify nearly 1.7 million patients and hospital staff, as well as the employees of vendors, contractors, and others – who were all…
Credit Report Resellers Settle FTC Charges; Security Failures Allowed Hackers to Access Consumers’ Personal Information
As part of the Federal Trade Commission’s ongoing campaign to protect consumers’ personal information, three companies whose business is reselling consumers’ credit reports have agreed to settle FTC charges that they did not take reasonable steps to protect consumers’ personal information, failures that allowed computer hackers to access that data. The settlements require the companies…
Ankle + Foot Center of Tampa Bay breach affecting 156,000 included Social Security Numbers as well as PHI
Now that I have additional information on a hacking incident involving the protected health information (PHI) of 156,000 patients of the Ankle + Foot Center of Tampa Bay, it is clear that this breach belongs on this site. I had previously noted it on PHIprivacy.net on January 29 after it appeared on HHS’s breach tool. At…