Nov 282014
 

Bill Smith reports: Parking service provider SP Plus says its equipment at Evanston’s three downtown municipal parking garages was hacked to steal credit card data from drivers. In a statement issued today, SP Plus says that the three Evanston garages, along with 10 more in Chicago and four in other cities, were affected by the security […]

Nov 282014
 

Singapore will introduce two-factor authentication in the wake of this SingPass breach earlier this year. Kevin Kwang reports: The Infocomm Development Authority (IDA) will be implementing a one-year transition period from the launch of a two-factor authentication (2FA) system for SingPass in the third quarter of 2015, it said on Thursday (Nov 27). This is because […]

Nov 282014
 

DataGuidance reports: The Italian Data Protection Authority (Garante) issued, on 26 November 2014, its general resolution on biometrics (‘the Resolution’), which includes a new 24-hour data breach notification obligation. The requirement was introduced a means of balancing the new simplified rules on authorisation for use of biometrics which will no longer require the Garante’s prior […]

Nov 282014
 

The California State Compensation Insurance Fund has been notifying compensation claimants of a data breach involving one of its service providers. The state learned of the attack on the system of  Lucy Gomez Blanking Interpreting, Inc. on October 24. They did not disclose when the attack had actually occurred. Although there was not a lot of detail […]

Nov 282014
 

And once again, Sony seems to be behind the eight ball when it comes to responding to a hack or claimed hack. Sean Gallagher reports: On Monday, employees at Sony Pictures Entertainment—the television and movie subsidiary of Sony Corp.—discovered that their internal corporate network had been hijacked. A message from an individual or group claiming […]

Nov 272014
 

From tinyprints: Recently, we detected a criminal cyber-attack on our Tiny Prints, Treat, and Wedding Paper Divas websites, which may have exposed the email addresses and encrypted passwords used by our customers to login to their accounts. We encrypt customer credit and debit card information, and we have no evidence that such information was compromised. […]