As we know, incident response and notification dsn’t always go smoothly, and people may be increasingly frustrated by the lack of information they can obtain.
Georgia Supreme Court Clarifies There Is No Duty to Safeguard Personal Information from a Data Breach
Gavin Reinke of Alston & Bird writes: The Georgia Supreme Court recently issued a decision holding that there is no duty to safeguard personal information from a data breach under Georgia law. Georgia Department of Labor v. McConnell involved the accidental disclosure of a spreadsheet that contained the name, social security number, home telephone number,…
Legal Threats Make Powerful Phishing Lures
Brian Krebs reports: Some of the most convincing email phishing and malware attacks come disguised as nastygrams from a law firm. Such scams typically notify the recipient that he/she is being sued, and instruct them to review the attached file and respond within a few days — or else. Here’s a look at a recent…
Two more Microsoft zero-days uploaded on GitHub
Catalin Cimpanu reports: A security researcher going online by the pseudonym of SandboxEscaper has published today demo exploit code for two more Microsoft zero-days after releasing a similar fully-working exploit the day before. These two mark the sixth and seventh zero-days impacting Microsoft products this security researcher has published in the past ten months, with…
Update: Georgia Tech to offer credit monitoring after data breach affecting 1.3M
Aaron Diamant reports: ATLANTA – Georgia Tech is taking steps to help people whose personal information may have been compromised during a data breach. Channel 2’s Aaron Diamant has been following this story since it broke in April, when the college said someone gained unauthorized access to a web application, affecting nearly 1.3 million people, including “some current…
TX: HHS joins medical records dump investigation
Jacob Rascon reports: With the help of Tomball Police, the United States Department of Health and Human Services Office for Civil Rights is investigating the illegal dumping of thousands of medical records. The more than 20 boxes of records belonged to former Today’s Vision patients and employees, including their Social Security numbers. Read more on…