Greg Picazo reports a City of Houston breach of current and former city employees’ information that will leave you muttering to yourself, “inexcusable:” The names, social security numbers and other financial information was stored in a locked filing cabinet sold by the city at auction in February. Bad enough already, right? How did they not…
PA: Local TD Bank employee charged in identity theft scheme
Jeff Blumenthal reports: A former TD Bank employee was indicted Monday for allegedly stealing customer information and selling it to co-conspirators, who in turn used the data to run an identity theft scheme. Michael Tuffour<, 27, of Philadelphia was charged with one count of bank fraud and three counts of aggravated identity theft. Read more on Philadelphia…
Student disability info ‘lost’ by uni was unencrypted and unsecured
Tom Joyner reports: The disability information of nearly 7,000 current and former students of the University of Sydney “lost” in a major privacy breach in February was unencrypted and unsecured, an internal review of incident has found. The information was lost when a software developer employed by the University left a laptop containing a student disability…
GDPR: potential fines for data security breaches more severe for data controllers than processors, says expert
Have I mentioned recently how much I appreciate columns or posts by lawyers that help educate us non-lawyers? A post in Out-Law.com points out something that is significant for those involved in IT security or advising clients: One of the many changes that the new Regulation will deliver when it comes into force on 25 May 2018 is…
Israelis in JPMorgan Hack Case to be Extradited
There’s an update to a case previously reported on this site. AFP reports: Israeli authorities have approved the extradition to the United States of two nationals indicted over a cyber attack against JPMorgan Chase, one of the largest computer frauds in history. Gery Shalon, 32, and 41-year-old Ziv Orenstein were arrested in Israel last July and will…
FTC To Study Mobile Device Industry’s Security Update Practices
In order to gain a better understanding of security in the mobile ecosystem, the Federal Trade Commission has issued orders to eight mobile device manufacturers requiring them to provide the agency with information about how they issue security updates to address vulnerabilities in smartphones, tablets, and other mobile devices. The eight companies receiving orders from the FTC…