It seems that using the new HHS/OCR web site will be even more difficult than I anticipated, as they are sorting breach reports by the date of breach, not date that the incident was added to their site, so I have to review the entire list to see what’s been added instead of just looking…
Category: Other
NSW Govt ousts web developer over security breach
Ry Crozier reports: The NSW Government has terminated its relationship with the developers of the state’s transport blueprint website after they admitted a security lapse – rather than hack – was the cause of a document leak. Transport minister David Campbell sought to make “a brief clarifying statement” to state parliament late yesterday after causing…
UK: East Lancashire councils in data protection mix-up
Sam Chadderton reports: Two East Lancashire Councils have been accused of unlawfully processing personal details after a data protection mix-up. Hyndburn Borough Council and Ribble Valley Borough Council both failed to renew registrations with the Information Commissioner’s Office (ICO) register of data controllers. Any organisation using personal information about the public must be registered. It…
Network flaw causes scary Web error
Jordan Robertson reports: A Georgia mother and her two daughters logged onto Facebook from mobile phones last weekend and wound up in a startling place: strangers’ accounts with full access to troves of private information. The glitch – the result of a routing problem at the family’s wireless carrier, AT&T – revealed a little known…
FINRA notifies Lincoln National of security vulnerability
A vulnerability in the portfolio information system for broker-dealer subsidiaries of Lincoln National Corporation potentially exposed the records of 1,200,000 people, 18,900 of whom are New Hampshire residents. By letter dated January 4, attorneys for Lincoln Financial Securities Corporation and Lincoln Financial Advisors notified the New Hampshire Attorney General’s Office that although an outside forensic…
P2P fraudsters snare DoD employees and FL business; two indicted
Jeffrey Steven Girandola and Kajohn Phommavong have been charged in a previously sealed 16-count indictment with Conspiracy, Computer Fraud, Access Device Fraud and Aggravated Identity Theft. According to the indictment, which was handed up by a federal grand jury in San Diego, the defendants installed peer-to-peer file sharing software on computers under their control and…