The breach disclosure notification provided by BCBS of Tennessee to the Maryland Attorney’s General Office has just been made available online. The detailed letter about the theft of 57 hard drives from a Chattanooga facility, dated December 16, 2009, provides additional insight into the mammoth chore BCBS faced trying to determine what data were…
Category: Of Note
Shock, confusion after birth certificates voided
Suzanne Gamboa reports: Native Puerto Ricans living outside the island territory are reacting with surprise and confusion after learning their birth certificates will become no good this summer. A law enacted by Puerto Rico in December mainly to combat identity theft invalidates as of July 1 all previously issued Puerto Rican birth certificates. That means…
Organizer of Darkmarket fraud website jailed
A man who created a website trading in stolen financial information linked to tens of millions of pounds in losses has been jailed for nearly five years. Renukanth Subramaniam, 33, founded Darkmarket, a “Facebook for fraudsters” where criminals could buy and sell credit card details and bank log-ins. The site was shut down in 2008…
Wyndham hotels hacked again
The Wyndham Hotel and Resort chain, which has suffered two known breaches since 2008, has reportedly suffered a third breach. Robert McMillan of IDG News Service reports: Hackers broke into computer systems at Wyndham Hotels & Resorts recently, stealing sensitive customer data. The break-in occurred between late October 2009 and January 2010, when it was…
Recommended: The Curious Case of EMI v. Comerica
David Navetta writes: Security breaches in the online banking world continue to yield interesting lawsuits (you can read about three others in this post). The latest online banking lawsuit filed by Experi-Metal Inc. (“EMI”) against Comerica (the “EMI Lawsuit”) provides some new wrinkles that could further illuminate the boundaries of “reasonable security” under the law….
FTC investigates some firms in P2P leaks
Jaikumar Vijayan of Computerworld was able to see a redacted copy of a letter (Civil Investigative Demand) sent by the FTC to some of the organizations who were found to be leaking information via P2P networks: It showed the agency is seeking information, dating back to mid-2007, on a wide-range of technology and process-related topics….