Zack Whittaker reports: Geico, the second-largest auto insurer in the U.S., has fixed a security bug that let fraudsters steal customers’ driver’s license numbers from its website. In a data breach notice filed with the California attorney general’s office, Geico said information gathered from other sources was used to “obtain unauthorized access to your driver’s…
Category: Other
Follow-up: Adventist Health Physician’s Network fined $40,000 for 2018 breach incident
Jeremy Childs reports: Adventist Health Physician’s Network, a hospital in Simi Valley, was fined $40,000 as part of a civil privacy settlement this week, according to the Ventura County District Attorney’s Office. The settlement stems from an incident in October 2018 when private medical files were found inside a storage unit in Simi Valley. The…
Hong Kong’s privacy watchdog checking whether city residents exposed in massive LinkedIn data leak
The 500m Facebook leak is not the only 500m leak in the news this past week. There’s also a leak allegedly involving LinkedIn, and now regulators are also looking into that one, too. Danny Mok reports: Hong Kong’s privacy watchdog was seeking clarifications on Wednesday night from career networking site LinkedIn over residents’ possible exposure…
IE: Donnelly is accused of data breach
Maeve Sheehan reports: Lawyers acting for women caught up in the CervicalCheck debacle have reported Health Minister Stephen Donnelly to the Data Protection Commission. Mr Donnelly has been accused of an alleged data breach and “unauthorised” use of the women’s home addresses by writing to them directly about the CervicalCheck tribunal. Stephen Donnelly wrote to…
How do you make a data breach even worse? You notify the victims that they are dead.
The headline says it all: Some Treasure Valley residents receiving letters from Saint Alphonsus saying they are dead The situation started routinely enough — an employee’s email account was compromised. In this case, the access was used to send out spam. Somehow, however, in the process of sending breach notifications, there was a mail merge…
T-Mobile discloses data breach after SIM swapping attacks
Sergiu Gatlan reports: American telecommunications provider T-Mobile has disclosed a data breach after an unknown number of customers were apparently affected by SIM swap attacks. […] In a data breach notice sent to impacted customers on February 9, 2021, and filed with US attorney generals’ offices, T-Mobile revealed that an unknown attacker gained access to customers’ account…