In a news report headlined, “Data breaches earn UH an ‘F’,” Gordon Y.K. Pang reports: A national organization has given the University of Hawaii a grade of “F” for online security breaches that exposed Social Security numbers and other sensitive information in nearly 260,000 records. The Liberty Coalition, a nonprofit civil liberties watchdog group, yesterday…
Category: Of Note
NU students’ financial aid information posted on state treasurer’s website
Alissa Skelton reports: The University of Nebraska has asked the state treasurer to remove thousands of students’ classified financial aid and loan information that was published on a state spending website. But State Treasurer Shane Osborn said Saturday that’s impossible for his agency to do with limited staff and resources. “We don’t want to put…
New FTC portal to assist businesses in complying with privacy and security laws
From the FTC’s press release: The Federal Trade Commission has a new Business Center at Business.ftc.gov that gives business owners, attorneys, and marketing professionals the tools they need to understand and comply with the consumer protection laws, rules, and guides the FTC enforces. The Business Center provides practical, plain-language guidance about advertising, credit, telemarketing, privacy, and a host…
What’s with the increasing demands to have breached entities fined?
There’s been a growing clamor both here and abroad to have entities who have had data breaches fined. And while the ICO has been promising that such fines are “imminent” and will be announced before the end of this month, I find myself wondering why we, the public, are becoming increasingly strident in our call for…
Indiana sues WellPoint over delayed breach notification
The Indychannel reports: The attorney general’s office is suing health insurance giant WellPoint Inc. for $300,000 for waiting months to notify customers that their medical records, credit card numbers and other sensitive information may have been exposed online. The lawsuit filed Friday in Marion County accuses WellPoint of violating a state law that requires businesses to…
GAO – Information Security: National Archives and Records Administration Needs to Implement Key Program Elements and Controls
Information Security: National Archives and Records Administration Needs to Implement Key Program Elements and Controls GAO-11-20 October 21, 2010 Summary: The National Archives and Records Administration (NARA) is responsible for preserving access to government documents and other records of historical significance and overseeing records management throughout the federal government. NARA relies on the use of…