Remember how I posted about how some frustrated researchers at Gibson Security had gone public with a SnapChat vulnerability that the firm allegedly hadn’t addressed? Well, now it seems 4.6 million SnapChat users’usernames and phone numbers have been leaked.
Accretive Health Settles FTC Charges That It Failed to Adequately Protect Consumers’ Personal Information
From the FTC, a follow-up on a breach that was first disclosed in September 2011, and that I’ve covered a number of times on PHIprivacy.net (see these articles). Regular readers may recall that Accretive was also sued by Minnesota’s Attorney General. That suit settled for $2.5 million in July 2012. Accretive Health, Inc., a company that…
Riverside Health System notifies 919 patients after employee improperly accessed their information
I hope this is the last breach of PHI I’ll have to report in 2013, but since there’s still 5 hours to go, who knows? WAVY in Newport News, Virginia reports: A local hospital is offering free credit monitoring after officials say an employee inappropriately accessed patients’ medical records. According to Peter Glagola, Director of…
‘Wichcraft notice to customers
December 30, 2013 ‘wichcraft Operating, LLC recently learned that an unauthorized party gained access to our systems, compromising the payment card information of certain customers who made purchases at a ‘wichcraft location in New York or San Francisco using a payment card from approximately August 11, 2013 to October 2, 2013. Based on our investigation,…
Omniquad Surf Wall Remote injects string into the browser user agent that identifies users – claim
Back in October 2010, I noted a breach involving managed security services provider Omniquad. Omniquad acknowledged the breach that involved helpdesk tickets leaking online, but the firm’s managing director, Daniel Sobstel, subsequently claimed that Webroot reseller Infosec Technologies started contacting his customers and passing on misleading information about the size of the data breach. Now…
Actelis Networks reports theft of safes with Human Resources files
Lawyers for Actelis Networks have notified the New Hampshire Attorney General’s Office of the theft of two safes containing some Human Resources files with personal information. In their notification dated December 13, they explain that two safes with password-protected files were stolen on December 7 or 8. The theft was reported to law enforcement. Files…