Singapore will introduce two-factor authentication in the wake of this SingPass breach earlier this year. Kevin Kwang reports: The Infocomm Development Authority (IDA) will be implementing a one-year transition period from the launch of a two-factor authentication (2FA) system for SingPass in the third quarter of 2015, it said on Thursday (Nov 27). This is because…
Visionworks files second breach report with HHS
It looks like Texas-headquartered Visionworks Inc. may have reported a second breach to HHS. Readers may recall that earlier this month, Visionworks issued a statement about a breach affecting 75,000 patients. That involved a server reportedly lost in June during an upgrade. But now it seems the Highmark subsidiary has also reported a breach involving theft of data (or a server itself) that…
Italy: Garante introduces ‘progressive’ mandatory breach notification
DataGuidance reports: The Italian Data Protection Authority (Garante) issued, on 26 November 2014, its general resolution on biometrics (‘the Resolution’), which includes a new 24-hour data breach notification obligation. The requirement was introduced a means of balancing the new simplified rules on authorisation for use of biometrics which will no longer require the Garante’s prior…
State Compensation Insurance Fund notifies claimants of breach
The California State Compensation Insurance Fund has been notifying compensation claimants of a data breach involving one of its service providers. The state learned of the attack on the system of Lucy Gomez Blanking Interpreting, Inc. on October 24. They did not disclose when the attack had actually occurred. Although there was not a lot of detail…
Sony Pictures hackers release list of allegedly stolen corporate files
And once again, Sony seems to be behind the eight ball when it comes to responding to a hack or claimed hack. Sean Gallagher reports: On Monday, employees at Sony Pictures Entertainment—the television and movie subsidiary of Sony Corp.—discovered that their internal corporate network had been hijacked. A message from an individual or group claiming…
Ca: Lakeridge Health reports 578 patient records inappropriately accessed
Reka Szekely reports: Lakeridge Health has notified 578 people this week that their hospital records were inappropriately accessed. Hospital officials say 14 staff members who provide mental health services have been disciplined over the privacy breach, which occurred during a 10-year period between December 2004 and summer 2014. Read more on Northumberland News.