Earlier in March, the South Carolina Department of Health and Environmental Control reported a breach involving the exposure of unshredded documents. At the time, it was not clear that any medical records were involved and so the incident was not reported here. But a follow-up investigation reveals that medical records were, indeed, involved. WIS10 reports:…
Addition to Washington Breach Law Imposes Retailer Liability in Payment Card Breaches
Under a Washington law effective July 1, 2010, certain entities involved in payment card transactions may be liable to financial institutions for costs associated with reissuing payment cards after security breaches. Designed to encourage the reissuance of payment cards as a means of mitigating harm caused by security breaches, Washington H.B. 1149 applies to three…
YPG employee data possibly compromised
James Gilbert reports: The personal information of more than 700 Yuma Proving Ground employees may be at risk of identity theft because a home computer that contained their data may have been compromised. According to YPG spokesman Chuck Wullenjohn, personnel information from 2005-2007, which included the names and Social Security numbers of the employees at…
Your health, tax, and search data siphoned
Dan Goodin reports: Google, Yahoo, Microsoft’s Bing, and other leading websites are leaking medical histories, family income, search queries, and massive amounts of other sensitive data that can be intercepted even when encrypted, computer scientists revealed in a new research paper. Researchers from Indiana University and Microsoft itself were able to infer the sensitive data…
John Hopkins University School of Education enrollment data exposed on web
A file containing student enrollment data from the Johns Hopkins University School of Education was inadvertently left accessible online, according to a letter sent by ID Experts on March 18 to the New Hampshire Attorney General’s Office. The file was hosted on the SoE server and contained data on students enrolled between 2003-2007. It was…
Your health, tax, and search data siphoned
Dan Goodin reports: Google, Yahoo, Microsoft’s Bing, and other leading websites are leaking medical histories, family income, search queries, and massive amounts of other sensitive data that can be intercepted even when encrypted, computer scientists revealed in a new research paper. Researchers from Indiana University and Microsoft itself were able to infer the sensitive data…