The Associated Press reports that District Judge Daniel Owens has extended a temporary restraining order that blocks enforcement of a controversial abortion law, House Bill 1595. The law is being challenged on grounds that it violates the state constitution. Read more: http://www.kansas.com/news/state/story/1105028.html
UK: Shropshire Council found in breach of the Data Protection Act
The Information Commissioner’s Office (ICO) has found Shropshire Council in breach of the Data Protection Act following the loss of an unencrypted memory stick containing sensitive information relating to a large number of adult social care clients and members of staff. The memory stick, which contained a social care management database including sensitive health information,…
So where are the breach reports on HHS?
The following is cross-posted from PHIprivacy.net: Under the provisions of the HITECH Act that went into effect several months ago, covered entities are required to report breaches involving the unsecured protected health information of 500 or more individuals to the Secretary of the U.S. Department of Health & Human Services. Unfortunately, HHS watered down the…
PA: Malware opens door to possible information exposure
From Pennsylvania State University’s web site: A computer in the Dickinson School of Law that contained 261 Social Security numbers from an archived class list was found to be infected with malware that enabled it to communicate with an unauthorized computer outside the network. As soon as the University became aware of the malicious software…
(update) RockYou admits security snafu exposed email login details
John Leyden reports: Social media application developer RockYou has vowed to improve its security and apply encryption following a breach that exposed 32 million user login credentials to hackers. Sensitive login credentials – stored in plain text – were left open to attack as a result of an SQL injection vulnerability in RockYou’s website. In…
Northern Ireland’s Department of Finance and Personnel agrees to improve data security
The Information Commissioner’s Office (ICO) has found Northern Ireland’s Department of Finance and Personnel in breach of the Data Protection Act after approximately 37,000 people’s personal details were stolen. Stephen Peover, the Permanent Secretary at the Department of Finance and Personnel, has signed a formal Undertaking to improve data security. The ICO, the UK’s privacy…