Thieves Using Bluetooth To Track Laptops and Smartphones To Steal.

As you travel and shop over the holidays, keep in mind that criminals will be working overtime in ways you don’t expect. According to wired.com, incidents where thieves are using Bluetooth scanners are increasing. At least, it’s the only conclusion to be drawn in a number of cases where phones and other electronics were stolen […] read more

Laptop With Medical Info Missing From University of Hong Kong.

According to scmp.com, the University of Hong Kong has lost a laptop computer containing medical information on more than 3,600 people. Apparently, the laptop computer was not secured with full disk encryption software; and yet, 901 patients’ data was cryptographically protected independently. Police are currently investigating the situation. Massive Data Breach This latest episode has […] read more

Seattle University Alerts Over 2000 Faculty & Staff Of Lost Laptop.

Seattle University announced a couple of weeks ago that an unencrypted laptop was lost while an employee was “commuting on the bus.” An IT investigation drew the conclusion that “an offline email cache file” contained Social Security numbers and other personal information for 2,102 current and former faculty, staff, and dependents. The story feels like […] read more

Canada NWT Laptop Not Encrypted Because It’s “Very Difficult To Encrypt”.

Approximately two weeks ago, Canada’s cbc.com reported on the theft of a government laptop with promises of more articles on the same in the weeks to come. Earlier this week, the last article was posted. The story is a doozy. To summarize, an employee with the Department of Health and Social Services (Northwest Territories, Canada) […] read more

California Looking To Label Biometric Data As “Personal Information”.

California was the first state in the US to pass a data breach notification law, all the way back in 2003. In the intervening fifteen years, all states have passed similar laws. The federal government has repeatedly attempted to pass one as well, so far without success. The need for federal legislation, one that would […] read more

Australia’s Notifiable Data Breaches Law Nets 31 Reports In 3 Weeks.

A new Australian law appears to be succeeding in finally unveiling the current state of data breaches in the Land Down Under. According to a release by the country’s information commissioner’s office (the OAIC), thirty-one data breaches were reported to the government since the law took effect on February 22, 2018.   Notifiable Data Breach […] read more

Fresno State Hard Drive Stolen, 15000 Affected.

At least 15,000 California State University, Fresno “student athletes, sports-camp attendees, and Athletic Corporation employees” were affected by a data breach earlier in the year, according to kmph.com and other news sites. A hard drive, 18 laptops, and other items were reported missing on January 12 from the university’s North Gym building. On the face […] read more

HIPAA Security Trickle-down? Notifications State Sensitive Information Not Contained In Stolen Devices.

According to databreaches.net, two medical entities recently alerted patients of a data breach: Eastern Maine Medical Center (EMMC) and Nevro Corporation. In the case of EMMC, an external hard drive went missing. For Nevro, a number of laptops were stolen during a break-in. Information contained in these devices was not protected with data encryption in […] read more

Coca-Cola Laptop Theft Lawsuit From 2014 Still Ongoing.

Over at bna.com, Bloomberg Law reminds us that there are a number of “legal battles over workplace cybersecurity being waged” in the USA. For example, ENSLIN v. THE COCA-COLA COMPANY ET AL, which has been ongoing since 2014. The breach was covered here and here previously, and the short version is: A Coca-Cola employee stole […] read more

Penn Medicine Sending Breach Notifications To 1000 Patients Over Stolen Laptop.

Penn Medicine has revealed this past week that a laptop computer with protected health information (PHI) was stolen on November 30. While the details are meager (aside from a short entry at philly.com, which is referenced by databreaches.net, an online search comes up empty), the following was revealed: About 1000 people were affected. The laptop […] read more