Shan Li reports: The Securities and Exchange Commission is having some security problems. About 4,000 agency employees, including several in Los Angeles, have been notified that their social security numbers and other payroll information were included accidentally in an unencrypted email, said Drew Malcomb, an Interior Department spokesman. The May 4 email was sent by…
(update) Massachusetts breach affected over 200,000
As a quick update: Matt Liebowitz of SecurityNewsDaily.com reports that the Massachusetts data breach disclosed yesterday may have impacted 210,000.
France’s official P2P monitoring firm hacked
Dan Goodin reports: The French government has temporarily suspended its reliance on the company designated to monitor file-sharing networks for copyright scofflaws following reports that a hack on its servers may have leaked sensitive information. Eric Walter, France’s secretary general of internet piracy, made the announcement over Twitter on Tuesday, saying that Hadopi, short for…
Massachusetts Executive Office of Labor and Workforce Development Reports a Virus Infiltrated the Computer Systems of Agencies tied to Employers, Unemployed Claimants and Career Center Customers
The Executive Office of Labor and Workforce Development (EOLWD) today reported that the Departments of Unemployment Assistance (DUA) and Career Services (DCS) network, individual computer terminals as well as individual computers at the One Stop Career Centers were infected with the W32.QAKBOT virus, a new strain of a computer virus, beginning on April 20, 2011….
Final PHI Protection Rule Won't Mandate Encryption
The omnibus federal final rule that will cover changes to the HIPAA privacy, security, breach notification and enforcement rules will not include a mandate for encryption of protected health information, confirms Susan McAndrew, deputy director for health information privacy in the Department of Health and Human Services’ Office for Civil Rights. […] McAndrew wasn’t as…
UK: University of Kent ‘unlawfully’ disclosed disability data
Zack Whittaker writes: The University of Kent has been found to have breached data protection rules as a result of a disclosure of personal data, relating to an email which could identify other students with disabilities.Yesterday, the Information Commissioner’s Office (ICO), the UK data protection agency, assessed that the University unlawfully disclosed personal data, mostly…