Last week, the Seattle Public School District (“SPS”) sent out a notice that a law firm it had retained to handle a complaint on its behalf inadvertently delivered information of about 7,400 special education students. Information contained within the files not only included date of birth, school assignment, and grade, but it also included student […]
For years now, I have spoken with colleagues in the legal profession over the necessity of implementing a data governance program for their law practice. The overwhelming response, to date, is one that most would probably not expect from practicing lawyers who have an ethical duty to keep client information confidential – that being one […]
Breaches of an organizations critical infrastructure, specifically its cyber-infrastructure, have become a daily recurring problem for businesses and governments worldwide. Allegations of the Chinese military hacking into IT networks of American businesses and organized criminal enterprises setting up lucrative black market schemes permeate the mainstream media market. When a breach of mission-critical data occurs, should the […]
The New York Times reported that login credentials of a Dropbox employee were stolen from an unrelated hacking incident, and led to a spam attack within its own network. The incident occurred when hacker’s used a stolen password to log into the Dropbox employee’s account that had content which contained Dropbox user information. From that point, the hacker’s launched a spam attack […]
A lawsuit was filed in San Jose, CA, on June 15, 2012, seeking class action status against LinkedIn, Corp., stemming from the recent data breach of user passwords that ended up on a Russian Internet forum. The lawsuit filed by a Chicago-based attorney, Ms. Katie Szpyrka, accuses LinkedIn of deceiving its customers and for failing to implement […]
In The New York Times today, Ms. Nicole Perlroth, started her column with “LinkedIn is a data company that did not protect its data.” This is a very powerful statement coming on the heals of a cyber-attack that posted the usernames and passwords of over 6 million LinkedIn users on a Russian Internet forum. Has […]
In recent days, high-profile social media companies LinkedIn and eHarmony disclosed that data from their IT systems have been exploited, via a cyber-attack, and the information obtained from the hack was placed on Russian Internet forums. LinkedIn estimated that approximately 6.46 million passwords were hacked, and are advising all users to update/change their login credentials. In response to […]
Atlanta-based Global Payments, Inc., was the latest payment processor to have its mission-critical information accessed in an unauthorized manner by hackers this past Friday. The fallout extends far beyond the possible exposure of up to 1.5 million accounts maintained by the seventh-largest payment processor. The high-profile customers that this relatively unknown company represents includes businesses, like Caesars […]
Documents filed in federal court regarding the January data breach of Amazon.com subsidiary, Zappos.com, shows the online shoe retailer’s data security team had detected the cyber-intruder while the hack was in progress. Zappos.com team members were able to thwart the breach before critical customer data was stolen, but the damage to its brand reputation continues to […]
The online shoe seller Zappos.com sent me an email notification today informing me that my credit card and payment information was compromised on its website. According to reports by the Associated Press, 24 million accounts were hacked into by a outside party. To prevent further exposure to my credit history, the company has urged all of […]