Lia Marie Brooks and Peter A. Nelson have an article on Harleysville Insurance Co. v. Holding Funeral Home, Inc. that I nearly skipped. I’m glad I didn’t, because it may have some applicability to cases where entities leave confidential or protected health information on public FTP servers without any password protection and then try to…
UK: Three Data Breach Exposes Mobile Customer Account Details To Total Strangers
Steve McCaskill reports: Three customers have reported seeing other users details in their online accounts and My3 application in fresh cybersecurity breach. Three has suffered a new data breach after an apparent technical glitch saw customers presented with the account details of other subscribers. Those affected could apparently access the bills, call logs and phone numbers of…
Hackers Try to Steal Baidu’s Driverless Car Secrets
Tom Mackenzie reports: Baidu Inc. has revealed that a gang of “hackers-for-hire” tried to steal its driverless car technology, prompting it to bulk up its cybersecurity team. The Beijing-based company’s head of cybersecurity, Ma Jie, said it was unclear who was behind the gang. “It’s very difficult to know who employs them to do that,…
Lawsuit against Flowers Hospital over theft of personal information attains class action status
Lance Griffin has an update to another long-running data breach lawsuit: A federal judge has granted class action status to a civil lawsuit involving the theft of personal information at Flowers Hospital, believed to have occurred in 2013. The decision, if ultimately approved, means people who believe they have been adversely affected as a result…
UNC Health Care notifies 1,300 prenatal patients of potential breach
Abbie Bennett reports: UNC Health Care is alerting its prenatal patients that their confidential medical information may have been shared with their home county, including Social Security numbers, sexually-transmitted disease information and more. Women seen for prenatal appointments at two UNC Health Care obstetric clinics between 2014 and 2017 may have filled out a form…
New Mexico passes data breach notification and protection bill
Erich Falke writes: Then there were two. On March 16, 2017, the New Mexico state legislature passed a bill requiring that New Mexico residents be notified if their “personal identifying information” was affected by a breach of electronic data. Upon signature of the bill, New Mexico will join 47 other states requiring such notification, and the only…