WITF reports that the Paytime breach affected even more than previously disclosed: Cumberland County-based Paytime says as many as 233,000 people may be affected by a data breach. The payroll processor distributed about 88,000 W-2’s in 2012, but says in a filing with the North Carolina Attorney General that dependents and spouses information may have also been…
Man charged with stealing identities of clients of his drug-testing business
Attorney General Lisa Madigan today announced charges against a Chicago area man for stealing the identities of hundreds of Chicago area people and using their personal information to set up cable television accounts for other people. Roy Burks, 37, of Richton Park, appeared earlier today in Cook County Criminal Court to formally face charges of…
Credit Card Breach at P.F. Chang’s – Banks
Brian Krebs reports: Nationwide chain P.F. Chang’s China Bistro said today that it is investigating claims of a data breach involving credit and debit card data reportedly stolen from restaurant locations nationwide. On June 9, thousands of newly-stolen credit and debit cards went up for sale on rescator[dot]so, an underground store best known for selling tens of millions of…
College of the Desert notifies employees of e-mail breach
College of the Desert in Palm Desert, California recently notified employees that an employee sent an e-mail with an attached spreadsheet with employee information to 78 college employees. The spreadsheet contained employees’ name, Social Security number, date of birth, gender, zip code, job title, employee identification number, health insurance benefit plan selection, health insurance subscriber identification…
How the FTC Can Readily Halt Identity Theft
Dan Solove argues that if the FTC would just conclude that the use of Social Security numbers as a password or authenticator is unreasonable data security, a lot of identity theft could be prevented. I think he’s right, but there has always been and would be tremendous pushback against the proposal. I’m not confident that Congress would…
bcc failure: St. Francis notifies patients whose e-mail addresses were exposed in an e-mail
WTOC reports that St. Francis Hospital sent out the following news release on Monday, June 9: Protecting the personal information of our patients is one of our most important responsibilities. Regrettably, this notice is regarding an unintentional incident involving a limited number of patient email addresses. On Friday, May 30, 2014, St. Francis became aware that an…