The breach involving the William Jennings Bryan Dorn, South Carolina. veterans’ hospital was reported in the media on September 8. By September 11, a potential class action lawsuit had been filed. WISTV reports: The Mike Kelly Law Group filed the suit in U.S. District Court siting [sic] Dorn and the Veteran’s Administration violated the U.S….
The Federal Trade Commission’s Role in Online Security: Data Protector or Dictator?
Alden Abbott writes: Abstract Over the past decade, the Federal Trade Commission, the federal government’s primary consumer protection agency, has pursued over 50 enforcement actions against companies that it deemed had “inadequate” data security practices. However, data security costs due to FTC actions will be passed on at least in part to consumers and should…
Ernst & Young accused by Canadian of massive data breach
Ellen Messmer reports: A used computer dealer in Canada claims he discovered a trove of Ernst & Young customer business data on Dell servers bought back in 2006 — and he wants the global consultancy to pay him to return the data. But is the breach for real or just a hoax? Mark Morris, who…
Temple University Health System reports health-data breach (updated)
Mark McCullough reports: An unencrypted desktop computer containing personal information on 3,780 patients was stolen during a break-in at a Temple University physicians’ office in late July, the university said in a statement Thursday. The computer, in the department of surgery, contained files with patient information that could be used for identity theft, including name,…
Potential Physicians Regional computer hacking victims report trouble getting identify theft help
Is it possible to really manage a massive breach well in terms of the sign-up for identity theft protection? It seems I frequently read complaints about overloaded phone lines. Here’s another one in the wake of the Community Health System breach that affected 4.5 million patients from over 200 covered entities: After getting a letter…
George Mason University notifies 4,400 of malware intrusion
George Mason University recently notified 4,400 people that personal information stored in a Travel Request Applications database could have been accessed due to a malware intrusion. Forensic examination of the server did not find any evidence of access to the data or exfiltration, but could not conclusively rule out the possibility. The intrusion was discovered…