CVS spanked for customer privacy failures, pays $2.25 million to settle HIPAA violations The largest pharmacy chain in the U.S., CVS Caremark, today settled Federal Trade Commission charges it failed "to take reasonable and appropriate security measures to protect the sensitive financial and medical information of its customers and employees," in violation of federal law. Hackers break into gov't travel site, feed users attack code A travel reservations Web site used by several federal agencies was hacked last week, and shunted unsuspecting users to a malicious domain, according to information Computerworld has obtained. Security Vendor Breaches: Fallout Justified Attendees at last week's ShmooCon security conference were transfixed when news broke that a hacker breached part of Kaspersky Lab's U.S. support site by exploiting a flaw in the site's programming. Hackers steal thousands of Wyndham credit card numbers Hackers broke into a computer at Wyndham Hotels and Resorts last July and stole tens of thousands of customer credit card numbers, the hotel chain warns. Facebook's Privacy Flap: What Went Down, What's Next Facebook may have done an about-face with its policies on using user data, but the social network's struggle to balance business with privacy is far from over. ATM hack: Organized crime or market forces? In November of 2008, a single scam netted more than $9m in a global automated teller machine heist. According to the FBI the attackers compromised pre-paid payroll cards from RBS WorldPay and gift cards, launching a coordinated attack against more than 130 ATMs in 49 cities around the world. The cards were exploited by "cashers" who withdrew money during a single 30-minute window. If the preliminary findings of the FBI turn out to be true, this could represent one of the most organized attacks in cybercrime history. Accused rogue admin Terry Childs makes his case He's been in jail for seven months now, but former San Francisco network administrator Terry Childs says he's going to keep fighting to prove he's innocent of computer crime charges. Hackers jump on newest IE7 bug Attackers are already exploiting a bug in Internet Explorer 7 (IE7) that Microsoft Corp. patched just last week, security researchers warned Tuesday. Sun offers open-source encryption key management protocol Sun announced today that it is throwing its hat into the standards arena, proposing that its open-source key management API be used as a universal way to allow encrypting devices to communicate with key management systems. Symantec to release Endpoint Virtualization Suite this spring Symantec Tuesday unveiled Endpoint Virtualization Suite, its set of server-based tools for controlling and delivering laptop and desktop application environments through flexible online provisioning. Trustwave buys NAC vendor Mirage Managed security provider Trustwave has bought up independent NAC vendor Mirage Networks and will add NAC to the list of services Trustwave provides. February giveaways from Cisco Subnet and Microsoft Subnet Up for grabs: One American Express gift card worth $250 from Global Knowledge; One Microsoft training course worth $2,995 from Global Knowledge; 15 copies each of the hot book titles Voice over IP Security, and CCNA Wireless Official Exam Certification Guide and 15 copies of Exchange Server 2007 How-To: Real Solutions for Exchange Server 2007 SP1 Administrators. Get all the entry details here. |
No comments:
Post a Comment