More than 200,000 payment card accounts have been compromised in a data breach at Restaurant Depot, a food service wholesaler. How did the breach occur, and what have customers been told about the incident?
A federal appeals court has ruled in favor of victims of the 2007 Hannaford data breach. Attorney Ronald Raether explains the ruling and what it potentially means to future breached entities and their customers.
As legal issues surrounding data breaches become increasingly complex, more organizations are turning to attorneys for post-breach response, says Lisa Sotto, a managing partner for New York-based law firm Hunton & Williams.
The delay in the release of final versions of HIPAA modifications and the HIPAA breach notification rule makes it difficult for healthcare organizations to set information security investment priorities, says hospital privacy officer Kari Myrold.
The plan identifies opportunities to engage the private sector in activities for transitioning promising R&D into practice. It prioritizes the development of a "science of security" to derive first principles and the fundamental building blocks of security and trustworthiness.
If management awareness of information security issues increases, will an organization's commitment to securing practices and policies also increase? This is the question answered by an eye-opening new study.
The lack of uniformity in federal and state privacy and security requirements is creating major challenges for health information managers attempting to comply, says Lynne Thomas Gordon, the new CEO of the American Health Information Management Association.
A U.S. District Judge has dismissed financial injury claims by nine financial institutions as a result of the 2009 Heartland Payment Systems data breach. But the judge did leave open one avenue for appeal.
The Department of Justice has indicted four Romanians for their alleged roles in a multimillion-dollar fraud scheme believed to have compromised hundreds of U.S. merchants and more than 80,000 U.S. consumers.
The Federal Deposit Insurance Corp. is warning its banks about another strand of phishing attacks purporting to come from the FDIC. The e-mails claim to offer critical information about business bank accounts.
Deven McGraw, co-chair of the Privacy and Security Tiger Team that's advising federal healthcare regulators, explains why she's frustrated by delays in rolling out new regulations to protect electronic health records and safeguard the exchange of patient information.