From Congressional Research Service: Federal Information Security and Data Breach Notification Laws Gina Stevens Legislative Attorney January 28, 2010 The following report describes information security and data breach notification requirements included in the Privacy Act, the Federal Information Security Management Act, Office of Management and Budget Guidance, the Veterans Affairs Information Security Act, the Health…
JC Penney, Wet Seal: Gonzalez Mystery Merchants
While major news sources rushed to report yesterday that Albert Gonzalez was sentenced yesterday to 20 years plus one day for the Heartland Payment Systems breach, a term to run concurrently with his other sentence, Brooklynne Kelly Peters and Evan Schuman of StorefrontBacktalk led with providing the answer to a question many of us had:…
Student loan company: Data on 3.3M people stolen
From the Associated Press: A company that guarantees federal student loans said Friday that personal data on about 3.3 million people nationwide has been stolen from its headquarters in Minnesota. Educational Credit Management Corp. said the data included names, addresses, Social Security numbers and dates of birth of borrowers, but no financial or bank account…
EMR Data Theft Booming
Nicole Lewis reports: Acceleration in the use of electronic medical records may lead to an increase in personal health information theft, according to a new study that shows there were more than 275,000 cases of medical information theft in the U.S. last year.Unlike stealing a driver’s license or a credit card, data gleaned from personal…
Gonzalez sentenced to concurrent 20-years terms; one more sentencing to go
Nancy Weil reports: As his parents and sister silently wept, hacker mastermind Albert Gonzalez was sentenced Thursday in U.S. District Court to two concurrent 20-year stints in prison for his role in what prosecutors called the “unparalleled” theft of millions of credit and debit card numbers from major U.S. retailers.* U.S. District Court Judge Patti…
UK: Porters have 'access' to medical records
Over 100,000 non-medical staff have access to patient records, a campaign group is claming. Big Brother Watch, in its report ‘Broken Records’ claims that 101,272 non-medical personnel working in acute NHS trusts have access to records – access being defined as being able to see at least a patient’s full name, date of birth and…