Dan Goodin reports: Credit card fraudsters may have pocketed as much as $500,000 over the past month by pursuing a new type of attack that exploits a major blind spot in payment processors’ defenses, an analyst said. The “flash attacks” recruit hundreds of money mules who go to ATMs throughout the US and almost simultaneously…
Feds Seek Input on PHR Privacy
From Health Data Management: The Department of Health and Human Services and Federal Trade Commission will hold a day-long roundtable discussion on Dec. 3 at FTC headquarters in Washington to solicit industry input on privacy and security requirements for personal health records and related service providers. Read more here.
GAO – Information Security: National Archives and Records Administration Needs to Implement Key Program Elements and Controls
Information Security: National Archives and Records Administration Needs to Implement Key Program Elements and Controls GAO-11-20 October 21, 2010 Summary: The National Archives and Records Administration (NARA) is responsible for preserving access to government documents and other records of historical significance and overseeing records management throughout the federal government. NARA relies on the use of…
Court Quashes Subpoenas Seeking Abortion Records
Jeff Gorman reports: Kansas health employees are not required to hand over abortion records to former state Attorney General Phill Kline or testify about the contents of those reports, the Kansas Supreme Court ruled. In 2004, Kline subpoenaed Shawnee County District Judge Richard D. Anderson, attorney Stephen W. Cavanaugh, and employees of the Kansas Department…
Audit: Province and U of Calgary must do better job
Jamie Komarnicki reports: The provincial government and the University of Calgary must do a better job of protecting against unauthorized access to confidential online information, warns Alberta’s auditor general. Service Alberta and the U of C each came under fire in Merwan Saher’s latest report, released Tuesday, for not demonstrating they’ve implemented adequate security policies,…
AU: Telstra botched mail-out exposes 220,000 customers
Asher Moses reports: Telstra is being investigated by both the communications and privacy watchdogs after it sent out 220,000 letters that contained account information belonging to other customers. The letters, which contained the name, phone number and telephone plan of customers other than the recipients, explained upcoming fixed line price changes. Telstra blamed the privacy…