I had previously reported that LifeLock was negotiating to settle FTC charges that it had violated a 2010 consent order. Now it’s official. From the FTC: LifeLock will pay $100 million to settle Federal Trade Commission contempt charges that it violated the terms of a 2010 federal court order that requires the company to secure…
Category: U.S.
Skimmers Found at Some Calif., Colo. Safeways
Brian Krebs reports: Sources at multiple financial institutions say they are tracking a pattern of fraud indicating that thieves have somehow compromised the credit card terminals at checkout lanes within multiple Safeway stores in California and Colorado. Safeway confirmed it is investigating skimming incidents at several stores. Read more on KrebsOnSecurity. In at least two locations…
Federal Judge Denies Request to Dismiss Hacking Charges
AP reports that a federal judge has denied a motion by lawyers for Roman Seleznev (previous coverage) seeking dismissal of hacking charges (like that was really gonna happen, right?) Martha Bellisle reports that the court found that nothing in the government’s conduct is seizing Seleznev in the Maldives was so outrageous or egregious as to warrant…
More details emerge on Hellgate student info breach
And this, children, is another reminder of what can go oh-so-very-wrong when you don’t follow procedures and protocols. Cassidy Belus reports: Missoula County Public Schools held a press conference Dec. 15 to address the recent Hellgate data breach, which accidentally released personal student information via email. Information about approximately 1,100 students were released. Assistant principal Libby…
Hospitals Aren’t the Only Ones Bleeding Health Records
Kaveh Waddell reports on an issue near and dear to my heart: not all entities that collect or store health information are HIPAA-covered entities. Earlier this year, as one example, we saw the Systema Software leak that impacted numerous firms with a wealth of workers compensation claims. And last year, we saw many employees’ wellness data breached…
Wish list app from Target springs a major personal data leak
Dan Goodin reports: According to researchers from security firm Avast, the database storing the names, e-mail addresses, home addresses, phone numbers, and wish lists of Target customers is available to anyone who figures out the app’s publicly available programming interface. Read more on Ars Technica.