Attorney General Lisa Madigan today announced charges against a Chicago area man for stealing the identities of hundreds of Chicago area people and using their personal information to set up cable television accounts for other people. Roy Burks, 37, of Richton Park, appeared earlier today in Cook County Criminal Court to formally face charges of…
Credit Card Breach at P.F. Chang’s – Banks
Brian Krebs reports: Nationwide chain P.F. Chang’s China Bistro said today that it is investigating claims of a data breach involving credit and debit card data reportedly stolen from restaurant locations nationwide. On June 9, thousands of newly-stolen credit and debit cards went up for sale on rescator[dot]so, an underground store best known for selling tens of millions of…
College of the Desert notifies employees of e-mail breach
College of the Desert in Palm Desert, California recently notified employees that an employee sent an e-mail with an attached spreadsheet with employee information to 78 college employees. The spreadsheet contained employees’ name, Social Security number, date of birth, gender, zip code, job title, employee identification number, health insurance benefit plan selection, health insurance subscriber identification…
How the FTC Can Readily Halt Identity Theft
Dan Solove argues that if the FTC would just conclude that the use of Social Security numbers as a password or authenticator is unreasonable data security, a lot of identity theft could be prevented. I think he’s right, but there has always been and would be tremendous pushback against the proposal. I’m not confident that Congress would…
bcc failure: St. Francis notifies patients whose e-mail addresses were exposed in an e-mail
WTOC reports that St. Francis Hospital sent out the following news release on Monday, June 9: Protecting the personal information of our patients is one of our most important responsibilities. Regrettably, this notice is regarding an unintentional incident involving a limited number of patient email addresses. On Friday, May 30, 2014, St. Francis became aware that an…
UK: Worcestershire Health and Care NHS Trust signs undertaking
From the Information Commissioner’s Office: An undertaking to comply with the seventh data protection principle has been signed by Worcestershire Health and Care NHS Trust. This follows an investigation whereby the local press were handed a patient handover sheet containing details of 18 patients. The sensitive personal data was found on a table in a…