A reader alerted me to a breach notification he received from Perfect World subsidiary Cryptic Studios, a massively multiplayer online role-playing game developer. You can read the web version of their notice. The hack occurred in 2010 but was only first discovered now due to “increased security analysis.” The intruder reportedly accessed account names, handles,…
UK: Insecure websites to be named and shamed after checks
Mark Ward reports: Companies that do not do enough to keep their websites secure are to be named and shamed to help improve security. The list of good and bad sites will be published regularly by the non-profit Trustworthy Internet Movement (TIM). A survey carried out to launch the group found that more than 52%…
Oregon State Hospital + employee's car + unattended files = when the heck will people learn?!
The Oregon State Hospital today notified patients that printed documents containing protected patient information were among items stolen from an Oregon State Hospital supervisor’s car on Friday, April 13th. There were three sets of documents taken, two of which included protected patient information: 1. A printed list of the names, hospital identification numbers, treating physicians…
NAFCU Letter to Reps. Boehner and Pelosi on Cyber/Data Security
Via CUInsight, a letter that has some recommendations many readers might agree with: April 23, 2012 The Honorable John Boehner Speaker U.S. House of Representatives Washington, D.C. 20515 The Honorable Nancy Pelosi Minority Leader U.S. House of Representatives Washington, D.C. 20515 Re: Cyber Security and Data Security Dear Speaker Boehner and Minority Leader Pelosi:\ On…
Employee snooping in IRS database: it’s like looking people up on Google or Facebook – defense attorney
Are cases of access in excess of authorization involving federal employees snooping in databases treated too lightly? Levi Pulkkinen reports on a case where some may think that a federal employee who misused access to the IRS database got off too lightly: An IRS worker accused of using the agency’s service database to snoop on her…
University of Houston College of Optometry Clinic Posts Breach Alert
Alert posted on University of Houston College of Optometry‘s web site: La Nueva Casa de Amigos Eye Clinic, a neighborhood clinic of the University of Houston College of Optometry, has notified about 7,000 individuals of a potential data exposure involving a computer containing clinic patient records. The university is not aware of any wrongful use…