7-Eleven, Inc. has learned that federal authorities in New Jersey have indicted individuals for the theft of credit and debit card numbers in a computer hacking scheme targeting multiple retailers in a number of separate incidents over the last several years. The company became aware in late 2007 that a security breach had occurred. The…
FTC issues Health Breach Notification Rule
<blockquote>The Federal Trade Commission (“FTC” or “Commission”) is issuing this final rule, as required by the American Recovery and Reinvestment Act of 2009 (the “Recovery Act” or “the Act”). The rule requires vendors of personal health records and related entities to notify consumers when the security of their individually identifiable health information has been breached….
Audit of Dept of Energy reveals unaddressed problems
From Protection of the Department of Energy’s Unclassified Sensitive Electronic Information, DOE/IG-0818: The Department of Energy and its contractors store and process massive quantities of sensitive information to accomplish national security, energy, science, and environmental missions. Sensitive unclassified data, such as personally identifiable information (PII), official use only, and unclassified controlled nuclear information require special…
UK: ICO to remind doctors who treat patients privately of their obligations to notify
Doctors who treat patients privately are being urged by the Information Commissioner’s Office (ICO) to make sure they are complying with the Data Protection Act. The privacy watchdog is launching a new initiative to ensure doctors operating privately notify with the ICO that they are handling people’s personal information. People’s individual health records are some…
FTC issues Health Breach Notification Rule
The Federal Trade Commission (“FTC†or “Commissionâ€) is issuing this final rule, as required by the American Recovery and Reinvestment Act of 2009 (the “Recovery Act†or “the Actâ€). The rule requires vendors of personal health records and related entities to notify consumers when the security of their individually identifiable health information has been breached….
Three indicted for hacking Heartland, 7-Eleven, and Hannaford; Over 130 million credit and debit card numbers stolen
An indictment [pdf] was returned today against three individuals who are charged with being responsible for five corporate data breaches, including the single largest reported data breach in U.S. history, announced Acting U.S. Attorney Ralph J. Marra, Jr., along with Assistant Attorney General of the Criminal Division Lanny A. Breuer and United States Secret Service…