Howard Anderson writes: The Department of Defense and two other government agencies have issued a proposed rule designed to help ensure that government contractors provide adequate privacy training to their staff members. The proposal comes in the wake of a recent healthcare information breach incident involving a contractor to TRICARE, the military health program. Read more on GovInfoSecurity. As an…
FL: Wells Fargo Customers Got Someone Else’s Financial Information (update 2)
Mike Lyons reports that a mailing error by Wells Fargo in Florida exposed customers’ bank account information to each other. Social Security numbers were not involved, but bank account numbers, balances, and transactions were. Ugh. Update: This may be a regional or national problem, as other parts of the country are also reporting complaints from…
UK: Probe at Edge Hill University after student data breach
Rob Pattinson reports: A (sic) investigation has been launched after personal details of nearly 800 Edge Hill University students were sent out in an email. The email, sent by a university staff member to 53 students, mistakenly contained 798 other students’ addresses, email addresses, course enrolment details and student network passwords. The university told the…
In the wake of really bad press, First State Super walks back its threats against researcher
Some updates to the First State Superannuation breach reported previously: 1. First State will not be taking legal action against Patrick Webster, the customer and IT security expert who alerted them to the breach. 2. The Australian Privacy Commissioner will investigate the breach. 3. On October 19, First State issued a statement linked from their home…
FBI Probes Sale Of Hospital Patient Information
More on the breach of Florida Hospital patient records by three employees who may have been selling accident victim data to an attorney referral service: WESH in Orlando reports that the FBI is now involved in the case. In related coverage, WFTV reports that “former patients were later solicited by lawyers and funeral homes. In one…
IA: Inmate church says identities were stolen
A United Methodist congregation made up of inmates at the Iowa Correctional Institute for Women in Mitchellville said an Indianola woman and former inmate used its volunteers’ personal information to steal 40 identities. Women at the Well United Methodist Church said Shelley Bridges, 37, obtained victims’ personal information, including Social Security numbers and birth dates,…