Brian Krebs reports: In the summer of 2022, KrebsOnSecurity documented the plight of several readers who had their accounts at big-three consumer credit reporting bureau Experian hijacked after identity thieves simply re-registered the accounts using a different email address. Sixteen months later, Experian clearly has not addressed this gaping lack of security. I know that because my account at…
Category: U.S.
Court rules automakers can record and intercept owner text messages
Suzanne Smalley reports: A federal judge on Tuesday refused to bring back a class action lawsuit alleging four auto manufacturers had violated Washington state’s privacy laws by using vehicles’ on-board infotainment systems to record and intercept customers’ private text messages and mobile phone call logs. The Seattle-based appellate judge ruled that the practice does not meet the…
Hospitals Accuse HHS of Double Standard Amid Pixel Privacy Row
Skye Witley reports: After nearly a year navigating the Biden administration’s efforts to push heath-care providers away from tracking technology that can associate website visitors with specific medical conditions, hospital associations alleged government agencies are still using those same tools in violation of the guidance. A quartet of hospital associations are challenging a December 2022 US Health…
EFF declares: “VICTORY! California Department of Justice Declares Out-of-State Sharing of License Plate Data Unlawful”
Dave Maass and Jennifer Pinsof write: California Attorney General Rob Bonta has issued a legal interpretation and guidance for law enforcement agencies around the state that confirms what privacy advocates have been saying for years: It is against the law for police to share data collected from license plate readers with out-of-state or federal agencies. This is…