Equifax’s massive 2017 data breach keeps getting worse

16 03 2018

March 1, 2018

Another 2.4 million people have now been affected by the incident, the credit agency says.This means that as many as 147.9 million consumers have been affected in some way by the breach, which amounts to about half the country.

more

The content in this post was found at

https://www.washingtonpost.com/news/the-switch/wp/2018/03/01/equifax-keeps-finding-millions-more-people-who-were-affected-by-its-massive-data-breach/ Clicking the title link will take you to the source of the post. and was not authored by the moderators of privacynnewmedia.com. Clicking the title link will take you to the source of the post.

Powered by WPeMatico



Appeals Court Revives Data Breach Suit Against Zappos

16 03 2018

A federal appeals court has ruled that consumers affected by a Zappos.com data breach have the right to sue the online retailer. The 2012 breach exposed the personal data of more than 24 million Zappos customers. A lower court previously held that the consumers lacked “standing” to bring a lawsuit against Zappos because their injuries were merely “conjectural.” But the Ninth Circuit Court of Appeals reversed that decision and allowed the case to continue. “With each new hack comes a new hacker, each of whom independently could choose to use the data to commit identity theft,” the court wrote.

more

The content in this post was found at
https://epic.org/2018/03/appeals-court-revives-data-bre.html Clicking the title link will take you to the source of the post. and was not authored by the moderators of privacynnewmedia.com. Clicking the title link will take you to the source of the post.

Powered by WPeMatico



Former Equifax executive charged with illegally trading before massive data breach was made public

16 03 2018

Washington Post

March 14, 2018

Federal prosecutors on Wednesday charged a former Equifax executive with insider trading, alleging that he profited from confidential information about the massive breach at the company that compromised sensitive data of 148 million people.

Jun Ying, former chief information officer of a U.S. business unit of Equifax, faces civil and criminal charges from the Securities and Exchange Commission and U.S. Attorney’s Office for the Northern District of Georgia.

”Ying used confidential information to conclude that his company had suffered a massive data breach, and he dumped his stock before the news went public,” Richard R. Best, Director of the SEC’s Atlanta Regional Office, said in a statement.

more

The content in this post was found at http://www.washingtonpost.com/news/business/wp/2018/03/14/former-equifax-executive-charged-with-insider-trading-ahead-of-data-breach Clicking the title link will take you to the source of the post. and was not authored by the moderators of privacynnewmedia.com. Clicking the title link will take you to the source of the post.

Powered by WPeMatico



Supreme Court Leaves Data Breach Decision In Place

22 02 2018

The Supreme Court has denied a petition for a writ of certiorari in Carefirst, Inc. v. Attias, a case concerning standing to sue in data breach cases. Consumers had sued health insurer Carefirst after faulty security practices allowed hackers to obtain 1.1 million customer records. EPIC filed an amicus brief backing the consumers, arguing that if “companies fail to invest in reasonable security measures, then consumers will continue to face harm from data breaches.” The federal appeals court agreed with EPIC and held that consumers may sue companies that fail to safeguard their personal data. Carefirst appealed the decision, but the Supreme Court chose not to take the case. EPIC regularly files amicus briefs defending standing in consumer privacy cases, most recently in Eichenberger v. ESPN, where the Ninth Circuit also held for consumers, as well as Gubala v. Time Warner Cable and In re SuperValu Customer Data Security Breach Litigation.

more

The content in this post was found at https://epic.org/2018/02/supreme-court-leaves-data-brea.html Clicking the title link will take you to the source of the post. and was not authored by the moderators of privacynnewmedia.com. Clicking the title link will take you to the source of the post.

Powered by WPeMatico



Mountain of sensitive FedEx customer data exposed, possibly for years

16 02 2018

Ars Technica

Passports, driver licenses, and other sensitive documentation for thousands of FedEx customers were left online, possibly for years, in a blunder that left the information available to identity thieves and other malicious actors, researchers said Thursday.

In all, Kromtech Security Center said, researchers found 119,000 scanned documents stored in a publicly available Amazon S3 bucket. The photo ID scans were accompanied by completed US Postal Service forms that included names, home addresses, and phone numbers of people who requested to have mail delivered by an authorized agent.

“Citizens from all over the world left their scanned IDs—Mexico, Canada, EU countries, Saudi Arabia, Kuwait, Japan, Malaysia, China, Australia—to name a few,” Kromtech researchers wrote.

more

The content in this post was found at https://arstechnica.com/information-technology/2018/02/fedex-customer-data-left-online-for-anyone-to-rifle-through/

Clicking the title link will take you to the source of the post. and was not authored by the moderators of privacynnewmedia.com. Clicking the title link will take you to the source of the post.