Thanks to partisan politics and intensive industry lobbying, we have no strong federal breach notification law. This, of course, is not news to my readers. But in light of (1) Congress’s current interest in cybersecurity and sharing of information, (2) the fact that up to 40% of breaches are first detected by members of the…
Should the penalty be for the data breach or for aiding and abetting fraud?
Philip Virgo writes: I have just had interesting feed back from a number of CISOs on my posting on the EU data Protection Directive. Some are still stuck in the past, adding yet more electronic nappies to cope with severe cases of data diarrhoea. Others are seeking to make the transition to a future where attack is…
Hello, you appear to have been hacked. Hello? Anyone there?
I’ve occasionally blogged about how frustrating it can be to try to notify an organization that they’ve apparently been hacked or had a breach. When that organization is a hospital and I can’t reach anyone, it’s even more frustrating. This week, it happened again. I ranted in Twitter a bit, and Jake Kouns suggested I…
Is Kively.com revealing user info?
On February 7, a site reader alerted me to a possible problem over on Kively.com: Look at the description directory – it reveals all the PII when there is some in the descriptor. After looking at the description directory, I found myself wondering about whether some of the entries were, in fact, disclosing some PII. Instead…
Why the delay?
Approximately three weeks ago, I added a breach incident to DataLossDB that involved the North Los Angeles County Regional Center. My summary of the incident was: Stolen laptop contained consumers’ names, addresses, dates of birth, phone numbers, UCI number, ability to ambulate, whether they used a respirator, type of residence, and contact person The entry…
Matlock Town Council Hacked by Anonymous
An anonymous hacktivist using the handle fiofa fado has hacked a UK government council website and as a result the site has been left defaced. The website is for the town council of Matlock (https://www.matlock.gov.uk) and contains information regarding local events, help and services and news. The attack was posted to Fiofa Fado’s Facebook timeline about 12 hours ago and at…