Jim Finkle reports: Ten U.S. states have sent a letter to Anthem Inc complaining that the company has been too slow in notifying consumers that they were victims of a massive data breach disclosed last week. “The delay in notifying those impacted is unreasonable and is causing unnecessary added worry to an already concerned population…
Jeb Bush exposes 12,000 to ID theft after posting emails online
AP reports: It was meant to be a politically astute gesture of transparency, and would prove his tech credentials to boot. But when Jeb Bush posted online all his personal emails from his eight years as Florida’s governor, he failed to realise that tucked away in the 332,999 messages were the names, birthdates and Social…
Update: U. of Sydney hack was by Abdilo; Dozens of others attacked, too
Earlier today, I posted a breach involving the University of Sydney. As an update, DataBreaches.net can now report that the breach was the work of Abdilo, who has made a point of going after universities (as other posts on this site have demonstrated). Abdilo had dropped hints about an Orsee 0day previously. Today, however, he made it clear that this…
OR: Convicted ID thief found with ‘how to’ guide, DMV database
Brent Weisberg reports: Joe V. Johansen was arrested Jan. 30 by officers with the Portland Police Bureau’s Street Crimes Unit that operates out of East Precinct. […] In the affidavit that requested an increase for bail, Jackson wrote Portland police officers Michael Strawn and Patrick Mawdsley received a downloaded copy of a computer that Johansen…
EU: WP29 'distances itself' from reform on further mHealth data processing
DataGuidance reports: The Article 29 Working Party (WP29) issued, on 5 February 2015, a letter to the EU Commission (‘the Commission’) addressing a request to clarify the scope of health data in the context of wellbeing and lifestyle apps. In particular, the WP29 stated that under the current Data Protection Directive (95/46/EC) further processing of…
Anthem says hackers had access to customer data back to 2004
Chad Terhune reports: Insurance giant Anthem Inc. said Thursday that hackers had access to customer data going back to 2004 as investigations continue into the massive breach. I would not take that to mean that the Anthem is not retaining data that goes back before 2004, but only that the database the hackers accessed went…