Quest Diagnostics issued a statement that billing collections service American Medical Collection Agency (AMCA) had potential unauthorized activity on AMCA’s web payment page, which could have compromised the data of about 11.9 million Quest patients. Lab results were not affected by this incident. Quest Diagnostics is continuing their investigation.
Some of the more comprehensive lists of known data breaches include:
- USA Today list of largest data breaches and hacks
- CNN.com – biggest data breaches in history
- Bloomberg.com – worst corporate hacks list
- Wikipedia data breach list
- State of California data breaches list
Identity theft victims can receive advice from these websites:
Stanford Law School’s Center for Internet and Society (CIS) has an interactive map that lists Internet legal developments around the world. More information about this map can be found at the CIS map’s FAQ page.
Update: Apple released iOS 12.1.4 on February 7, 2019 to fix the FaceTime issue. FaceTime is now available at the Apple System Status page.
USA Today and the Washington Post have reported that some iPhone FaceTime users have been able to listen to people they are calling before the call is answered. FaceTime runs on iPhones and iPads running iOS 12.1 as well as Macs running macOS Mojave.
Apple is currently working on a fix for this security issue. FaceTime has been temporarily taken down as noted on the Apple System Status page.
The Consumer Financial Protection Bureau (CFPB), a U.S. government agency that enforces federal consumer financial laws, publishes a list of companies that track data of U.S. consumers. The Fair Credit Reporting Act (FCRA) requires companies to give consumers copies of their personal data reports.
Some of the more relevant companies on this list include:
- Credit reporting agencies such as Equifax, Experian, TransUnion, LexisNexis, CoreLogic and Innovis
- Employment screening
- Tenant screening
- Check and bank screening such as ChexSystems and TeleCheck
- Insurance screening such as Comprehensive Loss Underwriting Exchange (CLUE), Insurance Information Exchange (iiX), and Automated Property Loss Underwriting System (A-PLUS)
- Medical screening including MIB Group
- Utilities screening including National Consumer Telecom & Utilities Exchange (NCTUE)
LexisNexis has a free personal report available which shows data compiled from various public sources.
Google will move the shutdown date of the consumer version of its Google+ (Google Plus) social network from August 2019 to April 2019. Google still plans to support Google+ for enterprise customers.
Update: Google+ will no longer be available for consumer (personal) accounts on April 2, 2019. Google also provided instructions on downloading Google+ data and deleting a Google+ account.
The U.S. Copyright Office issued a new ruling effective October 28th 2018 that allows exceptions to the Digital Millennium Copyright Act of 1998 (DMCA). Section 1201 of the DMCA was used by some companies to restrict consumer and third party use of products containing software, including smartphones, computers, motor vehicles, and home appliances. This ruling allows greater legal protection for consumers and third party companies to repair and diagnose rightfully owned technology products.
Answers to some frequently asked questions on this ruling can be found at www.copyright.gov/1201/2018/faqs.html. General information on U.S. copyright laws is available at www.copyright.gov/help/faq/index.html.
Google announced the scheduled end of the Google+ social network for non-enterprise users. Users have the next 10 months to move their data from Google+.
As part of this announcement, Google also stated that there was a bug in one of the Google+ People APIs that could have allowed data access to user data marked as private. This bug was noted and fixed by Google in March of 2018 and there was no evidence that this data was misused. Some of the optional user fields in this bug included name, email address, occupation, gender and age.
Google+ users who access it through G Suite will not be affected by this change. More information is available at the Google+ FAQ page.
Mozilla announced the release of Firefox Monitor, a free tool that allows you to see if your email address was included in known data breaches. This service will not store your email address unless you subscribe to it so you can be notified of future data breaches that use your email account.
This Mozilla security tool is available at monitor.firefox.com.
The Federal Trade Commission (FTC) has announced that Americans nationwide can now freeze their credit reports for free. This was made possible because of a new federal law made effective on September 21st 2018.
More information about credit freezes is at www.consumer.ftc.gov/articles/0497-credit-freeze-faqs. The FTC also requires that credit reporting agencies give consumers a free credit report once a year at www.annualcreditreport.com