From LeakedSource: Twitter credentials are being traded in the tens of millions on the dark web. LeakedSource has obtained and added a copy of this data to its ever-growing searchable repository of leaked data. This data set was provided to us by a user who goes by the alias “[email protected]”, and has given us permission…
Former Agilent Technologies employee pleads guilty to damaging ex-employer’s computers
Kenneth Kezeor pleaded guilty Tuesday to intentionally damaging a protected computer by attacking a corporate computer application of his former employer. The plea was announced by United States Attorney Brian J. Stretch and FBI Special Agent in Charge John F. Bennett. Kezeor, 47, of Felton, Calif., acknowledged he was hired by a Silicon Valley company…
Morgan Stanley Fined Over Inadequate Security Tied to Galen Marsh Data Breach
Matt Robinson reports that Morgan Stanley has been fined $1 million by the U.S. Securities and Exchange Commission to settle allegations that it failed to protect customer data improperly taken by a former financial adviser, Galen Marsh. Marsh pleaded guilty in September, 2015 to making thousands of unauthorized searches on his employer’s system and to copying information on…
Ca: Eastern Health Authority reports stolen doctor’s briefcase contained patient files
Eastern Health Authority in Newfoundland has reported a second breach in three months. This one involves the theft of a physician’s briefcase. Their statement: June 8, 2016 – St. John’s, NL: Eastern Health advised today that it has experienced an accidental breach of privacy of 34 of its patients. The accidental breach occurred when a physician’s car…
Second Circuit Holds Insurers Have Duty to Defend Data Trap Lawsuit
Traub Lieberman Straus & Shrewsberry LLP write: In its recent decision in Nat’l Fire Ins. Co. v. E. Mishan & Sons, Inc., 2016 U.S. App. LEXIS 10151 (2d Cir. June 1, 2016), the United States Court of Appeals for the Second Circuit, applying New York law, had occasion to consider the application of an exclusion…
UK: ICO issues £150,000 monetary penalty to Dyfed-Powys Police over data protection breach
It’s one of those “small breaches, big potential harm situations.” The Dyfed-Powys Police force has been fined£150,000 after an email containing information that could be used to identify eight sex offenders was sent to a member of the public in error. The monetary penalty notice explains that the community member’s email address (an external email) was…