HIPAA Data Breach: Medical Office Alerts Patients That Nothing Happened.

I’ve just run across a data breach notification that is a first of its kind: a data breach where the affected organization tells its clients (technically, patients) that nothing happened.  It’s like the Seinfeld show of data breaches.  The breach notification letter is about nothing.  Absolutely nothing.  Yet, there is something there. All kidding aside, […] read more

Connecticut Data Encryption: Senator To Propose Required Encryption For Insurance Companies.

It looks like Connecticut could be following in the footsteps of New Jersey: according to stamford.dailyvoice.com, state senators are considering proposing legislation that would require Insurance companies to encrypt any sensitive personal data.   If said proposal passes, it would become the second state I know of that makes it mandatory for insurance companies to use […] read more

New York Data Security Law: AG Pursuing Law Updates, Will Introduce Safe Harbor.

New York Attorney General Eric T. Schneiderman announced last week that he will be pursuing updates to the state’s data security laws.  Among the proposals are changes to the legal definition of “personal information”; introducing safe harbor for companies that meet security standards; and encouraging the sharing of forensic data.  It sounds as if security […] read more

Data Security: Home Depot’s Execs Switch To Macs, iPhones After Data Breach.

The Wall Street Journal reports on the Home Depot data breach.  Among some of the revelations is that (a) they had actually upgraded to the latest security measures when the data breach was discovered and (b) executives were handed Apple devices to counteract the immediate damage.  Seeing how these were “secure,” it sounds like disk […] read more