The good folks over at the Identity Theft Resource Center recently posted a very gracious thank-you to me and this site for helping track data breaches. I suspect that they’ll be pulling their hair out this weekend, though. đ In addition to the 100 previously unreported breaches from 2009 that I posted here today, here…
Category: Other
100 more breaches you probably never knew about in 2009
As noted here and elsewhere, the number of breaches reported in the media and other sources declined in 2009 relative to 2008, but newly obtained data suggests that once again, there was much that we did not know. During the period September 1 – December 31, 2009,  141 breach reports were received by the…
Victim Asks Capital One, âWhoâs in Your Wallet?â
Brian Krebs writes: In December, I wrote about how a Louisiana electronics testing firm was suing its bank, Capital One, to recover the losses after cyber thieves broke in and stole nearly $100,000. It looks like another small firm in that state that was similarly victimized by organized crooks also is suing Capital One to…
Six newly revealed breaches on HHS site
It seems that using the new HHS/OCR web site will be even more difficult than I anticipated, as they are sorting breach reports by the date of breach, not date that the incident was added to their site, so I have to review the entire list to see what’s been added instead of just looking…
NSW Govt ousts web developer over security breach
Ry Crozier reports: The NSW Government has terminated its relationship with the developers of the state’s transport blueprint website after they admitted a security lapse – rather than hack – was the cause of a document leak. Transport minister David Campbell sought to make “a brief clarifying statement” to state parliament late yesterday after causing…
UK: East Lancashire councils in data protection mix-up
Sam Chadderton reports: Two East Lancashire Councils have been accused of unlawfully processing personal details after a data protection mix-up. Hyndburn Borough Council and Ribble Valley Borough Council both failed to renew registrations with the Information Commissionerâs Office (ICO) register of data controllers. Any organisation using personal information about the public must be registered. It…