The Associated Press reports: A traffic stop in Tampa has lead to the arrest of two men who forged documents using public jail inmate data. Police say 21-year-old Bobby Wilson Jr. and 24-year-old Sebastian Leonard face over 130 charges each of identity theft, including fraudulent use of personal information and obtaining credit cards by fraudulent…
Dutch Public Transportation Website Leaks Private Passenger Information
Lucian Constantin reports: A government-run website promoting the OV-chipkaart smart card, which is currently being introduced in public transportation across The Netherlands, has been found leaking sensitive private information on over 168,000 passengers. A grey-hat hacker proved that he could access the name, address, birth date, phone number or e-mail for anyone in the database,…
VA breaches more numerous than we knew
Miami VA Healthcare System wasn’t the only VA center that experienced a breach involving paper records containing protected health information on January 19 of this year. According to OCR’s web site, VA Eastern Colorado Health Care System also experienced a breach involving paper records: VA Eastern Colorado Health Care System State: Colorado Approx. # of…
(follow-up) Gallatin Gateway woman gets nearly three years federal prison for fraud and identity theft
A Gallatin Gateway woman was sentenced in federal court Friday to 33 months in prison and three years probation after pleading guilty to credit card fraud and aggravated identity theft earlier this year. U.S. District Judge Donald Malloy also ordered Erin Lee Stewart, 50, to pay $7,185 in restitution to her victims. According to statements…
P2P networks a treasure trove of leaked health care data, study finds
Jaikumar Vijayan reports: Nearly eight months after new rules were enacted requiring stronger protection of health care information, organizations are still leaking such data on file-sharing networks, a study by Dartmouth College’s Tuck School of Business has found. In a research paper to be presented at an IEEE security symposium Tuesday, a Dartmouth College professor…
Employee creates Smucker data exposure jam
When an employee of J.M. Smucker needed assistance on a human resources project, the employee e-mailed the data to a relative who’s a computer programmer for help. Unfortunately, although the programmer’s server is reportedly a secure server, the programmer is not an employee of Smucker’s. Smucker discovered the breach itself through its own monitoring, and…