CUMIS Insurance Society and the credit unions it insures have failed in their lawsuit against BJ’s Wholesale Club and Fifth Third Bank over a 2004 breach that affected 9.2 million cardholders. The background of the case, as summarized in the court opinion: In February, 2004, Visa and MasterCard determined that computer thieves had gained access…
Personal information stolen from Detroit’s health department
Christine MacDonald reports on two breaches in the Detroit area: Police are investigating two incidents in which patients’ medical records — including social security numbers — were stolen from the city’s health department. The first theft occurred in late October when a flash drive was stolen from a health department employee’s car. It contained files…
(update) Texas company lays out ‘hacking’ case against Minnesota Public Radio
David Brauer has more on Lookout Services’s allegations against a Minnesota Public Radio reporter, following a breach reported here previously. […] In a Dec. 11 report, [MPR reporter] Aslanian said she was able to see “employee names, birth dates, Social Security numbers and hire dates” on Lookout’s web site “without using a password or encryption…
Personal information stolen from Detroit's health department
Christine MacDonald reports on two breaches in the Detroit area: Police are investigating two incidents in which patients’ medical records — including social security numbers — were stolen from the city’s health department. The first theft occurred in late October when a flash drive was stolen from a health department employee’s car. It contained files…
Personal Data At Risk After SQL Flaw Discovered
Sophie Curtis reports: A SQL injection flaw on a social networking app developer site has compromised the security of users and could lead to identity theft A SQL injection flaw has been discovered in Rockyou.com – a social networking application development website used by app developers for Bebo, Facebook and Myspace. The flaw could have…
UK: Birmingham school improves data protection
Waseley Hills High School and Sixth Form Centre in Birmingham has taken remedial action after the Information Commissioner’s Office (ICO) found it in breach of the Data Protection Act after the theft of personal data of over 1,000 pupils and staff. The school’s previous Headteacher, Mr David Thurburton, informed the ICO of the theft of…