Even though they acknowledge that the law allows 60 days to notify residents of a breach, the Las Cruces Sun-News took New Mexico State University to task for not notifying students sooner of a breach involving their personal information. Read their editorial here.
Apple tells developers they may not sell personal health data to advertisers
Kevin Rawlinson reports: Apple has tightened its privacy rules relating to health apps ahead of next month’s product launch, which is expected to see the unveiling of an updated iPhone and could include new wearable technology. The technology firm has told developers that their apps, which would use Apple’s “HealthKit” platform on the forthcoming products,…
UK: Lincolnshire County Council apologizes to 4,000 people for breach
David Ionescu reports: Lincolnshire County Council is apologising after a ‘data breach’ which led to the names and email addresses of more than 4,000 people being sent to some 250 email addresses. The incident happened on August 6 when 250 people received an email regarding changes to the County Council’s jobs site, to which the…
UT: Summit County sees credit card breach after fair, rodeo and demolition derby
Benjamin Wood reports: Hundreds of personal bank accounts are at risk after a security breach was discovered involving ticket sales for the Summit County Fair rodeo and demolition derby. Summit County spokeswoman Julie Booth said officials became aware of the breach Sunday after a number of county employees and members of the community reported experiencing…
FBI investigating hacking attack on JPMorgan
The more that comes out, the worse this sounds. Now it’s seven banks and it sounds like the hackers were able to burrow in deep. Matt Egan, Jose Pagliery and Evan Perez report: The FBI is investigating hacking attacks on 7 of the top 15 banks, including one against JPMorgan Chase, according to someone with…
Oops! Mozilla left thousands of email addresses and passwords lying around (again)
Graham Cluley reports: At the beginning of August members of the Mozilla developer community were warned that approximately 76,000 email addresses and 4,000 encrypted passwords had been left on a publicly accessible server for 30 days. For most organisations, that would be embarrassing enough. But security screw-ups can be like buses, you can wait for ages noticing…