When health insurance information is involved in a breach, patients need to be vigilant to protect themselves from medical identity theft. But even if you have not been notified of a breach, you should always be on the lookout for medical ID theft, as there are other breaches that generally don’t get a lot of…
U.S. states say Anthem too slow to inform customers about breach
Jim Finkle reports: Ten U.S. states have sent a letter to Anthem Inc complaining that the company has been too slow in notifying consumers that they were victims of a massive data breach disclosed last week. “The delay in notifying those impacted is unreasonable and is causing unnecessary added worry to an already concerned population…
Jeb Bush exposes 12,000 to ID theft after posting emails online
AP reports: It was meant to be a politically astute gesture of transparency, and would prove his tech credentials to boot. But when Jeb Bush posted online all his personal emails from his eight years as Florida’s governor, he failed to realise that tucked away in the 332,999 messages were the names, birthdates and Social…
Update: U. of Sydney hack was by Abdilo; Dozens of others attacked, too
Earlier today, I posted a breach involving the University of Sydney. As an update, DataBreaches.net can now report that the breach was the work of Abdilo, who has made a point of going after universities (as other posts on this site have demonstrated). Abdilo had dropped hints about an Orsee 0day previously. Today, however, he made it clear that this…
OR: Convicted ID thief found with ‘how to’ guide, DMV database
Brent Weisberg reports: Joe V. Johansen was arrested Jan. 30 by officers with the Portland Police Bureau’s Street Crimes Unit that operates out of East Precinct. […] In the affidavit that requested an increase for bail, Jackson wrote Portland police officers Michael Strawn and Patrick Mawdsley received a downloaded copy of a computer that Johansen…
EU: WP29 'distances itself' from reform on further mHealth data processing
DataGuidance reports: The Article 29 Working Party (WP29) issued, on 5 February 2015, a letter to the EU Commission (‘the Commission’) addressing a request to clarify the scope of health data in the context of wellbeing and lifestyle apps. In particular, the WP29 stated that under the current Data Protection Directive (95/46/EC) further processing of…