Leicestershire County Council have breached the Data Protection Act (DPA), following the theft of a briefcase containing sensitive personal data from a social worker’s home, the Information Commissioner’s Office (ICO) said today. The ICO was informed by the Council in May 2011 that a briefcase, containing documents to be used for initiating court proceedings, had…
Computer specialist who had warned Iranian banks about vulnerability, hacks and dumps 3 million accounts to make his point
Is it just me, or have these folks missed the point? From The Tehran Times: A computer specialist, who used to work for a PSP (payment service provider) company which offers a number of Iranian banks services for accepting electronic payments, has hacked accounts of three million bank customers to show the vulnerability of the…
Duke University Health System notifies patients of breach-that's-not-called-a-breach? (updated)
If you’re not familiar with bankruptcy proceedings, you may be as confused by this breach notice by Duke University Health System as I was. After reading it a few times, I finally thought I may have understood what happened, but then I read Jeff Drummond’s blog post as to why the DUHS never called this…
BPAS hacker sentenced to jail
James Jeffery, who pleaded guilty to hacking the British Pregnancy Advisory Service in March, has been sentenced to two years and eight months in jail.
UK: Two organizations sign undertakings after privacy breaches
Two NHS trusts have signed undertakings to improve data protection following breaches. Hertfordshire County Council signed an undertaking following the loss of an Attendance and Pupil Support consultation folder in January 2011. The lost bag contained hard copy records of primary school consultation visits and the documents in the folder included pupil name and information relating…
FL: Memorial Healthcare System notifies 9,500 that two employees may have accessed their info for tax refund fraud scheme
I’m having one of those deja vu experiences, but I don’t see where this breach was ever mentioned before on this blog or DataBreaches.net. Bill Lewis reports: Two employees of the Memorial Healthcare System have been fired and may face criminal charges in relation to an identity theft scheme involving the intended filing of fraudulent…