Stephanie Hoffman reports: BM booth attendees at the AusCERT conference on Australia’s Gold Coast received more than just a complimentary USB stick after it was found Friday that the token gifts were infected malware. IBM broke the news to AusCERT delegates in an e-mail, alerting them that the USB sticks the company handed out at…
Regina recycling company loses confidential medical records
Pamela Roth and Angela Hall report: Brad Smith was a little surprised to discover …. a few dozen blue and green plastic medical cards containing various pieces of personal information, such as a name, telephone number, address and date of birth. The cards were strewn all over the street and on the side of adjacent…
OR: Sales files of PDX boat firm left in Dumpster
A tip to KGW led to the discovery of a Dumpster full of personal financial information of past customers of Staff Jennings boats in Southwest Portland. Some files went back 20 years, including a boat purchased by David Moravik, who called the carelessness “unprofessional.” Better Business Bureau spokeswoman Kyle Kavas said it’s the law for…
FAQ on Alberta’s New Breach Notice Law
David Navetta writes: Earlier this month (May 1, 2010), Alberta became the first Canadian province to pass a broad breach notice law (“Bill 54”) as part of their comprehensive data privacy statute, the Personal Information Protection Act (“the Act”; technically, Alberta is the second province to pass a breach notice law in Canada, Ontario previously…
PA: Feds look into CTC bank theft
Mark Guydish reports: Wilkes-Barre Area Career and Technical Center Solicitor Anthony Lupas said Friday that there is a federal investigation into possible theft from a center bank account done by a computer hacker, but investigators had asked him not to release any details. Lupas would not say how much money might have been stolen, but…
Russia Considers Improving its Data Protection Law
The Russian Federation is considering amending the country’s data protection law, according to BNA’s Privacy Law Watch. Businesses have long complained that the law contains restrictions on data processing that are extremely difficult to meet. For example, the law requires affirmative written consent for most types of data processing. In the online context, this provision…