That's a wide net to cast, and I say it's about time that those storing data in Microsoft's HealthVault have online access to their own, well, vaults. For years people have been able to access e-mail, financial, and other accounts online, and even aggregate that … Read more
Payroll processor PayChoice said Thursday it is investigating a breach in which customers received targeted e-mails purporting to be from the company but were designed to trick people into downloading malware.
Workers received e-mails last week that directed them to download a browser plug-in or visit a Web site so they could continue accessing the Onlineemployer.com PayChoice portal. Malware in the download and on the Web site turned out to exploit holes in Internet Explorer, Adobe Flash, and Adobe Reader, PayChoice said.
The e-mails were targeted to individuals and included their user names, login IDs, and partial passwords, thus … Read more
WASHINGTON--When the Online Safety and Technology Working Group, established via the Protecting Children in the 21st Century Act, last week held a meeting at the U.S. Department of Commerce to discuss how to best protect kids online, members may not have been expecting to talk so much about offline behavior.
The 29-person panel, which includes representatives of Internet companies, academia, nonprofit organizations, and government agencies appointed in April by U.S. Department of Commerce's National Telecommunications and Information Administration, offered recommendations ranging from self-protection to cyberbullying prevention. The common themes: exhibiting the same self-awareness and outward sensitivity online … Read more
Researchers at security firm Finjan have discovered details of a new type of banking Trojan horse that doesn't just steal your bank log-in credentials but actually steals money from your account while you are logged in and displays a fake balance.
The bank Trojan, dubbed URLZone, has features designed to thwart fraud detection systems which are triggered by unusual transactions, Yuval Ben-Itzhak, chief technology officer at Finjan, said in an interview Tuesday. For instance, the software is programmed to calculate on-the-fly how much money to steal from an account based on how much money is available.
It exploits a … Read more
CVS Caremark announced Tuesday that it has broadened its pharmacy partnership with Microsoft to let customers download their prescription histories to their Microsoft HealthVault accounts.
Available since June 2008, the CVS offering has allowed customers to save and manage their pharmaceutical history online via Microsoft's HealthCare Web site. Now people can also add their prescription history by visiting CVS.com and logging into their HealthVault record.
Microsoft HealthVault is a free service that lets consumers store and maintain their health information in one single electronic spot. The site also provides health-related advice on losing weight, staying in shape, and … Read more
A sensitive e-mail mistakenly sent by a bank to a Gmail address that prompted a court to order Google to deactivate the account was not viewed by the recipient and has been deleted, the bank said on Tuesday.
The e-mail, sent by an employee of Jackson, Wyo.-based Rocky Mountain Bank on August 12, contained names, addresses, Social Security numbers, and loan information of more than 1,300 bank customers.
The bank sent another e-mail asking that the data be destroyed and went to court to get Google to intervene on its behalf. Last week, a judge in U.S. … Read more
A bank that accidentally sent sensitive customer information to a Gmail address and persuaded a judge to order Google to deactivate the account has resolved the issue with Google and the companies have filed a motion to dismiss the case.
Google spokesman Andrew Pederson declined to say exactly how the issue was resolved or to identify the owner of the Gmail account.
The problem began August 12 when a worker at Rocky Mountain Bank inadvertently sent an e-mail containing names, addresses, Social Security numbers, and loan information of more than 1,300 customers to a random Gmail address. When the … Read more
Social networking is on the rise, both on and off the job, leaving companies uncertain how to monitor their use by employees, reports new survey.
More than 50 percent of companies questioned said they have no policy to address the use of social networking by employees outside the workplace, according to a survey released Wednesday by the Society of Corporate Compliance and Ethics and the Health Care Compliance Association.
Typically, companies shy away from restricting an employee's actions off the job. But businesses are concerned about employees who use social networking and reveal private details or post inappropriate pictures … Read more
The personal information you give to businesses may not be as secure as you hope, according to a new survey.
Around 55 percent of all businesses acknowledge that they secure credit card information but not Social Security numbers, bank account details, and other personal data, according to a survey of more than 500 companies released Wednesday by Imperva and Ponemon Institute.
The survey was conducted to determine how many companies are complying with PCI DSS, the Payment Card Industry's Data Security Standard. PCI DSS tries to ensure that businesses take specific measures to secure their Web sites, databases, and … Read more
ICSA Labs, which sets standards for commercial security products, plans to announce on Monday a new program for helping corporations protect themselves from attacks and snooping via Internet-connected devices such as printers, copiers, ATMs, and security cameras.
Under the ICSA Labs Network Attached Peripheral Security Certification and Assessment program, experts will evaluate devices used in corporations and work with vendors to help them understand the inherent security risks to Internet-connected devices, said George Japak, managing director of ICSA Labs, which is an independent division of Verizon Business.
The devices targeted are not those that are part of the computing network … Read more