The Information Commissioner’s Office (ICO) has found St Albans City and District Council in breach of the Data Protection Act. A laptop was stolen which was used to store postal voters’ records as part of an election process in June 2009. The personal information, which was password protected but unencrypted, remained on the laptop when…
Thousands of stolen bank account numbers seized in Ontario
Karen Mullins reports: Police have seized thousands of bank account numbers stolen by an identity theft ring and charged six people with 80 criminal offences. Durham Regional Police and the Ontario Provincial Police have been working almost a year to bust up an ATM tampering ring in an operation dubbed Project Kaiser. […] During the…
Three newly revealed breaches affect over 20,000
Cross-posted from PHIprivacy.net: The new HHS/OCR web site has added three more breach reports: Montefiore Medical Center State: New York Approx. # of Individuals Affected: 625 Date of Breach: 2/20/10 Type of Breach: Theft Location of Breached Information: Laptop Private Practice City and State: San Antonio, Texas Approx. # of Individuals Affected: 21,000 Date of…
Federal Information Security and Data Breach Notification Laws
From Congressional Research Service: Federal Information Security and Data Breach Notification Laws Gina Stevens Legislative Attorney January 28, 2010 The following report describes information security and data breach notification requirements included in the Privacy Act, the Federal Information Security Management Act, Office of Management and Budget Guidance, the Veterans Affairs Information Security Act, the Health…
JC Penney, Wet Seal: Gonzalez Mystery Merchants
While major news sources rushed to report yesterday that Albert Gonzalez was sentenced yesterday to 20 years plus one day for the Heartland Payment Systems breach, a term to run concurrently with his other sentence, Brooklynne Kelly Peters and Evan Schuman of StorefrontBacktalk led with providing the answer to a question many of us had:…
Student loan company: Data on 3.3M people stolen
From the Associated Press: A company that guarantees federal student loans said Friday that personal data on about 3.3 million people nationwide has been stolen from its headquarters in Minnesota. Educational Credit Management Corp. said the data included names, addresses, Social Security numbers and dates of birth of borrowers, but no financial or bank account…