S&D Coffee recently notified the New Hampshire Attorney General’s Office that a security breach involving its online e-commerce site resulted in the compromise of customers’ names, addresses, email addresses, and credit card numbers. The site is hosted by E-Dreamz, who discovered the breach on February 7 and notified S&D Coffee. The coffee retailed indicated that it…
MN: From the grave, Ulysses Telemedia lets secrets slip
I can’t access the entire article, but found this article by Jim Hammerand today while reading something else he wrote: The bidder was just interested in the file cabinets. But for $10, he got something much more valuable: dozens of boxes of corporate records, chock full of sensitive employee data, customer information and internal documents….
UK: Cornwall health trust disclosed third-party personal data
Royal Cornwall Hospitals NHS Trust has acknowledged that breached the Data Protection Act on two occasions and has signed an undertaking with the Information Commissioner’s Office. According to a press release issued by the ICO today: The first breach happened in July 2010 when an individual received a response to a subject access request for information…
States Attempt to Address Privacy Risks Associated with Digital Copiers and Electronic Waste
On April 1, 2011, a New York law went in effect requiring retailers of certain electronic equipment to institute electronic waste collection programs and to provide information to consumers on how to “destroy all data on any electronic waste, either through physical destruction of the hard drive or through data wiping.” Manufacturers of devices that have…
UK: ICO slaps Warrington and Halton Hospitals NHS with Undertaking
From an undertaking posted to the ICO’s web on Friday without any companion release to indicate when the breach occurred or when it was reported to the ICO: The Information Commissioner (the “Commissioner”) was provided by the data controller with a report of the theft of an unencrypted laptop storing personal data. The laptop was…
And the hits just keep on coming for Epsilon
Note: CBS reports that the Secret Service is investigating the Epsilon breach. If you receive a phishing attempt that you want to report to the Secret Service, email [email protected]. You can also file a report at http://www.ic3.gov/default.aspx. I’ll add businesses to the list of affected customers as I become aware of them, so check back if…