Category: State Data Breach Notification

California Attorney General: Your data is not safe

Posted By: derektumulak, @tumulak
09 Jul
Categories : APT, Big Data, Data Breach, State Data Breach Notification            Leave a comment           

Last week, I read in the San Jose Mercury News that California Attorney General Kamala Harris released a report detailing the number of Californians who had sensitive data exposed — including information such as Social Security numbers, bank account information and other personal information — in more than 100 separate data breaches. The number of individuals who were exposed by these breaches? A startlingly high 2.5 million. As a member of the information security industry, I have a clear vantage […]

A couple weeks ago, I shared two important lessons information security professionals could learn from Yahoo’s recent data breach. I wanted to highlight another “honoree” that reminds us that data breaches can have an adverse impact on any organization. In October, the state of South Carolina revealed it had been the victim of a data breach that resulted in the exposure of more than 3.8 million taxpayer records. Compromised data included social security and payment card numbers. While almost all […]

Compliance & Security: Tomato, To-mah-to?

Posted By: Tina Stewart, @socialTIS
02 Apr
Categories : HIPAA, HITECH, PCI DSS, State Data Breach Notification            Leave a comment           

The very cleverly titled story on CSO Online “Barclays Contactless Card Users Exposed to Fraud” appears to suggest that Barclay Card’s Near Field Communication (NFC) cards are ‘vulnerable’ as the data is stored ‘unencrypted’. According to the story, using an NFC enabled smartphone, ViaForensics was able to capture the NFC data from the card. This data was subsequently used to make purchases through several merchants that were not using required fraud controls. When asked, Barclays stated that they were “in […]