Trevor Maxwell reports: Just as a potential class-action lawsuit against Hannaford Bros. appeared dead, there’s a glimmer of hope this week for consumers who hope to recover damages from the Scarborough-based grocer for a massive electronic data theft in late 2007 and early 2008. The federal judge overseeing the case plans to ask Maine’s highest…
Category: Of Note
TN: 68 Blue Cross Blue Shield hard drives stolen (updated)
Yet another Blue Cross Blue Shield breach in the news this week, although it’s not clear yet whether any PII or PHI are involved (see update below). Joe Legge reports: Monday, Blue Cross Blue Shield workers noticed something missing here at their Eastgate offices. Dozens of computer hard drives weren’t where they were supposed to…
IT analyst at NY Fed Reserve Bank pleads guilty to ID theft scheme
A former employee of the Federal Reserve Bank in New York, Curtis L. Wiltshire, pleaded guilty today to one count of bank fraud and one count of aggravated identity theft for having obtained student loans using stolen identities. Kenneth Wiltshire, Curtis Wiltshire’s brother, pleaded guilty to related charges on September 15, 2009. According to the…
850,000 doctors could be hit by potential data breach from insurer’s stolen laptop
Emil Berry reports on a recent breach that was originally described as affecting “tens of thousands” of people. Now it appears that the breach was much bigger: A file containing identifying information for every physician in the country contracted with a Blues-affiliated insurance plan was on a laptop computer stolen from a BlueCross BlueShield Assn….
Scam hits more e-mail accounts, MS blocks accounts
Jonathan Fildes reports: The scale of a phishing attack originally thought to be directed at Hotmail may be larger than previously thought. BBC News has seen a list of more than 20,000 more names and passwords that have been posted online. The list contains e-mail addresses and passwords from Hotmail, Yahoo, AOL, Gmail and others…
Lawsuit: Heartland Knew Data Security Standard was ‘Insufficient’
Linda McClasson reports: Months before announcing the Heartland Payment Systems (HPY) data breach, company CEO Robert Carr told industry analysts that the Payment Card Industry Data Security Standard (PCI DSS) was an insufficient protective measure. This is the contention of a new master complaint filed in the class action suit against Heartland, which in January…