From the press release: The future of health care should encourage expanded use of information tools to help consumers better manage their health, 56 diverse organizations said today as they embraced a framework for personal health information access and privacy. “Consumers need to be full participants in modern health information tools and services to help…
Blue Chip FTP Logins on Server
Security researchers have found a treasure chest of FTP passwords, some from high profile sites, on an open cybercrime server. Jacques Erasmus, CTO at security tools firm Prevx, stumbled across a site where a Trojan is uploading FTP login credentials captured from compromised machines. So far, Erasmus has found logins for ftp.bbc.co.uk, ftp.cisco.com, ftp.amazon.com, ftp.monster.com…
MA Regs Trumps the Feds
A privacy bill under consideration in Washington would significantly impact retail through provisions that would spell out how companies would have to protect customer data and what they must do if information is compromised, yet, as worrisome as that might be for some, any concern is essentially moot because a Massachusetts regulation with substantially the…
Audit of US DOE on Incidents
Parts of the report were redacted, indicated by x’s below. Executive Summary: The Office of Inspector General (OIG) performed a review of the Department of Education’s (Department) external web sites. This audit was conducted in accordance with the Federal Information Security Management Act (FISMA) as enacted by Title III of the E-Government Act of 2002,…
UCM notifying 7000 of Breach
The University of Central Missouri is notifying 7,000 students who were enrolled for the summer of 2005 and the summer of 2006 that two computer reports containing their names, Social Security numbers, and dates of birth were in two paper reports that were stolen. Source: KMBC
MA: Commonwealth Solar Breach
About 810 residents who had applied for the Massachusetts Commonwealth Solar rebate program had their personal information posted on a government Web site for nearly an hour, according to a notice from the Massachusetts Technology Collaborative. The quasi-public agency that administers the program said a file containing the names, addresses and Social Security numbers of…