Steve Nowottny reports: NHS managers have told thousands of patients they will only be allowed to opt out of having a Summary Care Record if they come and explain their reasons in person, Pulse can reveal. More than 500 patients at an early adopter site in Birmingham have already been forced to explain face-to-face why…
HK: Privacy Commissioner to investigate police data leakage
As a follow-up to what appears to be one toomany file-sharing leaks, the Office of the Privacy Commissioner for Personal Data has ordered an investigation.
UAE: Newspaper staff salaries leaked on internet
Salaries of Abu Dhabi-based newspaper The National’s entire editorial staff have been posted on Wikileaks. Makt006 Business has more on the impact.
CA: Stolen police laptops had access to county data system
Laura Norton of The Press Democrat reports that four laptops with access to personal information on the department’s more than 1,000 employees were stolen from Sonoma County Sheriff’s Department police vehicles. While the laptops were in the police vehicles, they could access the county data system, although there is no indication that the thieves did…
HackersBlog exposes BT.com vulnerability (updated)
“Unu” of HackersBlog reports that they have been able to access at least one of UK telecom BT’s databases through SQL injection: A faulty parameter, improperly sanitized opens the vault to the pretious databases. One can gain access to such ordinary things as personal data, login data, and the like. In the first syntax I…
More on whether breach notification laws work
George Hulme of Information Week also responded to Kim Zettner’s article in Threat Level about a recent seminar on whether data breach notification laws are working. He raises some points about the value of such laws and similar to what I said here yesterday, notes “Helping consumers avoid identity theft and fraudulent transactions is only…