Sean Sposito reports on why Thomas White, who posted the Patreon data dump on his site, TheCthulhu.com, refuses to take it down. Despite the legal risk, White said, the public has a right to know exactly what data has been exposed — and researchers should be able to safely examine it to find out how it happened. Could white…
New EMV-chipped credit cards still vulnerable to fraudsters – FBI
A public service announcement from the FBI: By October 2015, many U.S. banks will have replaced millions of traditional credit cards, which rely on data stored on magnetic strips, with new credit cards containing a microchip known as an EMV chip. While EMV cards offer enhanced security, the FBI is warning law enforcement, merchants, and…
Valley Children’s sues lung doctors for allegedly swiping patients
Barbara Anderson reports: Valley Children’s Hospital is suing lung doctors for allegedly trying to steal patients and take them to University Pediatric Specialists, a rival medical group. According to the lawsuit filed by Valley Children’s Hospital and its affiliated Valley Children’s Specialty Medical Group, Dr. John Moua and Dr. David Lee wrongfully and without permission accessed…
(Now other) Advocates press federal regulators to investigate Experian data breach
Priya Anand reports: Consumer and data privacy advocates are asking federal regulators to investigate the breach at credit bureau Experian, which compromised the personal information of millions of T-Mobile customers. “We believe that it is incumbent on the regulatory agencies to fully investigate this breach, including whether other Experian databases have been breached,” they wrote in…
Maybe every e-commerce site should assume they were hacked last year
Customers may be singing, “You got mud on your face, you big disgrace” when they receive a breach notification from GlamGlow, the latest business to disclose that it had a breach more than one year ago that they’ve only recently discovered. The notification letter begins: We recently became aware that an unauthorized party accessed the glamglowmud.com website and acquired certain…
Do Experian’s board, investors, and public know the full extent of Experian’s security concerns?
Brian Krebs has a piece on security at Experian that I hope the FTC and Congress critters read. One of the points I had made in my complaint to the FTC is that Experian’s multiple data security breaches were not disclosed in either its annual reports or reports to investors. Brian’s piece makes me wonder…