Robert R. Baron, Jr., David S. Fryman, Corinne Militello, and Philip N. Yannella of Ballard Spahr write: A Pennsylvania federal magistrate judge has tossed an employer’s claims under the Computer Fraud and Abuse Act (CFAA), holding that the CFAA does not extend to punish employees for the misuse of information that was accessed with permission….
Category: U.S.
RK Internet notifies customers after malware snags their information
When RK Internet (“Rural King”) became suspicious on March 7th that their web server had been compromised, they brought in forensic investigators. Those investigators discovered that malware had been injected, and for transactions that occurred between February 6 until March 12, customers names, debit or credit card number with security code and expiration date, telephone…
5-year-old Ocean Beach boy exposes Microsoft Xbox vulnerability
Michael Chen reports: A young Ocean Beach boy is in the spotlight after he discovered a back door in to one of the most popular gaming systems in the world. When 5-year-old Kristoffer Von Hassel is playing his Xbox, his feet don’t touch the ground. But something he did has made the smartest guys at…
At least two states investigating data breach involving Court Ventures, an Experian unit
Jim Finkle of Reuters reports: U.S. attorneys general have launched a multi-state investigation into a breach in which criminals gained access to a repository of some 200 million social security numbers through a unit of data provider Experian Plc. “We are investigating,” said Maura Possley, a spokeswoman for Illinois Attorney General Lisa Madigan. “It’s part…
Your employee info is in the mail….. somewhere….
So TrustHCS hires Human Resource Advantage (“HR Advantage”) to provide employment resources support. HR Advantage stupidly (yes, I said stupidly) sends unencrypted employee information on a thumb drive via U.S. mail to TrustHCS. The information included names, Social Security numbers, dates of birth, bank account information, postal and email addresses, and any leave of absence…
Update: Archdiocese of Seattle data breach appears to target Oregon Catholics
KGW reports: A data breach at the Archdiocese of Seattle that led to rampant tax fraud appears to have spread to Oregon. The Archdiocese of Portland said hackers have stolen Social Security numbers from Catholic Church employees and volunteers in order to file false tax returns and claim the refund. So far, 105 Catholic Oregonians…