Meena Harris writes: The Federal Trade Commission (“FTC”) has approved final orders settling charges against Fandango and Credit Karma that the companies misrepresented the security of their mobile apps and failed to protect the transmission of consumers’ sensitive personal information. The FTC specifically alleged that, although the companies made security promises to consumers that their…
Snooping staff still top security issue
Erin McCann reports: When it comes to data breaches, hacking and loss or theft of unencrypted devices are far from healthcare security professionals’ only concerns. Employee snooping and insider misuse also prove to be among the biggest privacy threats in the healthcare sector today. Read more on HealthcareITNews, where Erin mentions some recent cases,…
CHS Hacked via Heartbleed Vulnerability
From TrustedSec: As many of you may have already been aware, a breach at Community Health Systems (CHS) affecting an estimated 4.5 million patients was recently revealed. TrustedSec obtained the first details on how the breach occured and new information relating to this breach. The initial attack vector was through the infamous OpenSSL “heartbleed” vulnerability…
Supervalu lawsuit: Hackers may have stolen credit card info from local Shop ‘n Save customers
Daniel Kelly reports: A class-action lawsuit alleges a national chain of grocery stores, which includes several local Shop ‘n Save stores, failed to protect its customers from hackers who may have stolen their financial information. Representatives of Supervalu, the parent company of Shop ‘n Save, have said they do not know of any customers affected…
Tampa Man Sentenced To More Than Four Years In Prison For Stolen Identity Refund Fraud
An updated to a previously reported breach: Tampa, Florida – U.S. District Judge Susan C. Bucklew sentenced Hantz Saint Marc today to four years and six months in federal prison for theft of government property and aggravated identity theft. Saint Marc pleaded guilty on February 19, 2014. According to court documents, Saint Marc engaged in…
MeetMe’s notification to California Attorney General’s Office
MEETME STATUTORY NOTICE NEW HOPE, Pa., August 15, 2014 — MeetMe, Inc. today announced that it has recently discovered a security breach within its network that compromised certain information in at least some MeetMe user accounts. Specifically, between August 5 and 7 of this year, MeetMe believes that hackers gained access to some user names, email addresses, and encrypted…