The following is cross-posted from PHIprivacy.net: Under the provisions of the HITECH Act that went into effect several months ago, covered entities are required to report breaches involving the unsecured protected health information of 500 or more individuals to the Secretary of the U.S. Department of Health & Human Services. Unfortunately, HHS watered down the…
Category: Of Note
Hacker hits NC community college system
Kristin Collins reports: Patrons of the state’s community colleges may have had their drivers license and Social Security numbers stolen by a hacker. College officials announced late today that 51,000 library users at 25 campuses, including Wake Tech and Johnston County, were the victims of a security breach in August. They said the libraries collect…
VA: Laptop containing personal information about MWR customers stolen (update 1)
FMWRC Public Affairs posted the following on www.army.mil: A laptop computer containing names and personally identifiable information for slightly more than 42,000 Fort Belvoir Morale, Welfare and Recreation patrons was stolen from a Family and Morale, Welfare and Recreation Command employee Nov. 28. The Family and MWR Command was made aware of the theft Dec….
No law, no investigation. So change the law!
On August 28, Missouri’s new data protection law went into effect. Fat lot of good it did for past clients of Nationwide Credit Counseling. When their financial records, replete with personal information, were found in bankers boxes in a dumpster , were they notified of the breach? No. And was any action taken against the…
Plugging The Government’s Biggest Data Leak
Andy Greenberg reports: When David Ferriero was named head of the federal government’s National Archive and Records Agency last month, he didn’t just become America’s most important librarian. He also took on one of the toughest tasks in government IT today: plugging the source of a continual stream of information leaks, including what may have…
BJ’s, Bank Not Liable for Credit Card Fraud
CUMIS Insurance Society and the credit unions it insures have failed in their lawsuit against BJ’s Wholesale Club and Fifth Third Bank over a 2004 breach that affected 9.2 million cardholders. The background of the case, as summarized in the court opinion: In February, 2004, Visa and MasterCard determined that computer thieves had gained access…