Since the University of Massachusetts announced a breach of its computer system earlier this month, there have been a few inquiries but no evidence that hackers actually stole information, according to UMass spokesman Edward F. Blaguszewski. By law UMass had to post a notice on its Web site reporting “a breach of security regarding personal…
Category: U.S.
Laptop with loan data missing in Weber County
The Weber County Sheriff’s Office is concerned about a missing laptop from a loan officer that contains sensitive and personal information of hundreds of home owners in Utah. Deputies said the [Sun Valley Mortgage] loan officer accidently (sic) left his computer on a sidewalk instead of putting it in his car, a mistake that may…
Malware strikes Titanium Metals Corp.
Titanium Metals Corporation (“TIMET”) notified the New Hampshire Attorney General’s Office on August 13 that “malicious software circumvented the Company’s firewall protections and downloaded information from the Company’s systems.” TIMET reports [pdf] that their Information Services Department discovered and stopped the cyberattack, but does not indicate how long it took for the attack to be…
7-Eleven statement regarding 2007 credit card fraud
7-Eleven, Inc. has learned that federal authorities in New Jersey have indicted individuals for the theft of credit and debit card numbers in a computer hacking scheme targeting multiple retailers in a number of separate incidents over the last several years. The company became aware in late 2007 that a security breach had occurred. The…
FTC issues Health Breach Notification Rule
<blockquote>The Federal Trade Commission (“FTC” or “Commission”) is issuing this final rule, as required by the American Recovery and Reinvestment Act of 2009 (the “Recovery Act” or “the Act”). The rule requires vendors of personal health records and related entities to notify consumers when the security of their individually identifiable health information has been breached….
Audit of Dept of Energy reveals unaddressed problems
From Protection of the Department of Energy’s Unclassified Sensitive Electronic Information, DOE/IG-0818: The Department of Energy and its contractors store and process massive quantities of sensitive information to accomplish national security, energy, science, and environmental missions. Sensitive unclassified data, such as personally identifiable information (PII), official use only, and unclassified controlled nuclear information require special…