From India’s Central Bureau of Investigation: The Central Bureau of Investigation has arrested an Under Secretary in Department of Disinvestment & Section Officer in Department of Economic Affairs both of Union Ministry of Finance and a Consultant / Chartered Accountant (private person) based at Mumbai in a case relating to alleged leakage and supply of…
SG: Is that your name, address, phone number in the dump?
Grace Chng reports: Personal information is still being improperly collected, used and disposed of, even though there is a new law to protect personal data. Seventy organisations – especially those in retail, healthcare and property – are under investigation following complaints that they used e-mail addresses and other personal information for marketing purposes or collected…
Texas A&M Data Breach of Nearly 4,700 Faculty & Graduate Assistants
KBTX reports: The social security numbers for 4,697 faculty and graduate assistants who taught during the Fall 2014 semester at Texas A&M University were viewable from a department website. The social security numbers were inadvertently displayed along with the individual’s first and last name in the Fall 2014 Semester Teaching Analysis Report (STAR). Upon discovering…
Some IT staff at Victor Valley College return to work while security protocol breach investigation continues
There’s an update to the somewhat puzzling news report that the entire IT staff of Victor Valley College had been been placed on paid administrative leave while “a breach in security protocol” was being investigated. Brooke Self reports: Three of seven Information Technology employees who were placed on paid administrative leave in late January after Victor Valley College’s…
Amedisys notifies 6,909 patients after failure to locate 142 devices during inventory
On March 2nd, home health and hospice care provider Amedisys issued a press release that disclosed that during a risk management inventory of their devices, which commenced during the second half of 2014, they were unable to locate 142 encrypted computers and laptops. The devices had been assigned to Amedisys clinicians and other team members who left the company between 2011…
Adventures in breach alerts, Saturday edition
If you’re going to misdirect a fax containing personal information, you probably don’t want to misdirect it to a security firm with a blog. SLC Security reports that they received faxes from William Farrell, CPA of Cary, NC containing what appeared to be payroll information. When they tried to contact the firm using the contact email prominently posted on the firm’s…