Lorenzo's Security Blog

Connecticut Attorney General (AG) Richard Blumenthal announced Wednesday that he is suing Health Net of Connecticut for failing to secure private patient medical records and financial information involving 446,000 Connecticut enrollees and promptly notify consumers exposed by the security breach. Image via Wikipedia   Blumenthal also is seeking a court order blocking Health Net from [...]

An electronic storage device stolen from an employee’s car in Sacramento last month contained health information from 15,500 patients, including about 800 in the Fresno area, Kaiser Permanente Northern California said Tuesday. Image via Wikipedia   There is no evidence the information has been used inappropriately, a Kaiser official said. The risk for fraud and [...]

Heartland Payment Systems Inc., a New Jersey-based payments processor, has agreed to pay up to roughly $60 million to cover losses caused to Visa Inc. credit and debit cardholders as a result of a huge 2008 security breach, the companies have announced. Image via Wikipedia The settlement agreement is contingent upon acceptance by financial institutions [...]

Data being crunched by Cobit-authors ISACA will reveal that although enterprises believe they are realising value from their IT investments they cannot be sure, because most of them fail to fully measure it. Image via Wikipedia   When details of its findings are published later this week, Isaca’s report will show how in a nine-country [...]

RockYou, the popular provider of third-party apps for Facebook, MySpace and other social-networking services, is being hit with a proposed class-action accusing the company of having such poor data security that at least one hacker got away with 32 million e-mails and their passwords. The suit accuses the maker of apps like “Slideshow” for MySpace [...]