New York state sued Allstate on Monday, accusing the insurer’s National General unit of failing to report a data breach that exposed drivers’ license numbers, and not developing reasonable safeguards to protect policyholders’ private information.
The lawsuit by New York Attorney General Letitia James was filed in a state court in Manhattan, and seeks civil fines. Allstate did not immediately respond to a request for comment.
Read more…
Source: USA TODAY
Related:
- 57 Million Personal Info Records Leaked by Unprotected ElasticSearch Server
November 28, 2018
An unprotected Elasticsearch server indexed by the Shodan IoT search engine on November 14 exposed a 73 GB database of 57 million US citizens’ records. The publicly accessible server discovered by security researcher Bob Diachenko contained an Elasticsearch instance with a database of “first name, last name, employers, job title, email, address, state, zip, phone number, and ...
- Google Taking Over Health Records Raises Patient Privacy Fears
November 21, 2018
Three years ago, artificial intelligence company DeepMind embarked on a landmark effort to transform health care in the U.K. Now plans by owner Alphabet Inc. to wrap the partnership into its Google search engine business are tripping alarm bells about privacy. Data protection advocates cried foul when the company reversed course on an earlier pledge to keep DeepMind ...
- Amazon suffers data breach days before Black Friday
November 21, 2018
Amazon has suffered a data breach just days before Black Friday – and the company was tight-lipped about whether it had notified the British data protection authorities. Multiple Register readers forwarded us emails sent from Amazon’s UK tentacle informing them that the online sales site had “inadvertently disclosed name and email address due to a technical error”. The ...
- USPS Site Exposed Data on 60 Million Users
November 21, 2018
U.S. Postal Service just fixed a security weakness that allowed anyone who has an account at usps.com to view account details for some 60 million other users, and in some cases to modify account details on their behalf. KrebsOnSecurity was contacted last week by a researcher who discovered the problem, but who asked to remain anonymous. The researcher said ...
- The US Office of Personnel Management Systems Are Still Insecure
November 14, 2018
The security posture of the Office of Personnel Management has improved drastically and by the end of the year, the agency is on track to meeting almost all recommendations the US Government Accountability Office (GAO) made over the past two years. Full compliance is expected by the end of 2019. GAO carried out between February 2015 ...
- Eurostar Resets All Customer Passwords After ‘Attempted’ Hack
November 2, 2018
The incident, which took place in mid-October, follows major breaches at several airlines — but this time around no payment details were affected Eurostar has reset all customers’ online passwords after detecting an “attempted” hack, the rail company confirmed. The incident follows major breaches at several airlines. Eurostar customers reported receiving emails from Eurostar earlier this week notifying ...