DHS confirms employee, investigation data exposed

Jason's Deli reveals data breach affecting payment details | Mobile room keys aren't immune to breaches | Carphone Warehouse must pay nearly $542K for significant data breach Created for {EMAIL} | [Web Version]( January 11, 2018 [Data Security & Privacy SmartBrief]( [Data Security & Privacy SmartBrief]( [SIGN UP]( ⋅ [FORWARD]( ⋅ [ARCHIVE]( [] Top Story [] [DHS confirms employee, investigation data exposed]( A data breach discovered in 2017 exposed sensitive information including the Social Security numbers of 247,167 people employed by the Department of Homeland Security in 2014, plus people involved in department investigations between 2002 and 2012, the agency confirmed. Those affected were notified in December. [CNET]( (1/3) [LinkedIn]( [Twitter]( [Facebook]( [Google+]( [Email]( [] Data Security & Privacy [] [Jason's Deli reveals data breach affecting payment details]( Restaurant chain Jason's Deli has advised customers of a potential data breach, with customer payment card details reportedly appearing for sale on the dark web. An investigation is underway to discover if the cash register systems were hacked, and the deli has promised to inform the public of the probe's results. [Austin American-Statesman (Texas) (free content)]( (1/9) [LinkedIn]( [Twitter]( [Facebook]( [Google+]( [Email]( [] Cyber Risk [] [Mobile room keys aren't immune to breaches]( Mobile room keys aren't immune to breaches Mobile is key for Qorvo (Qorvo) Use of mobile room keys is increasing in the hotel industry, raising some concerns about their security. The FBI reports no compromises in the US, but hacking has occurred elsewhere and experts urge hoteliers and customers to scrutinize their protection. [NerdWallet]( (1/8) [LinkedIn]( [Twitter]( [Facebook]( [Google+]( [Email]( [] By the Numbers [] [Carphone Warehouse must pay nearly $542K for significant data breach]( The UK's Information Commissioner's Office has handed Carphone Warehouse a nearly $542,000 fine for a 2015 data breach affecting personal information of more than 3 million customers and 1,000 staff members. "Using valid login credentials, intruders were able to access the system via an out-of-date WordPress software," the ICO said, calling the security flaw a "serious contravention" of the Data Protection Act. [Engadget]( (1/10) [LinkedIn]( [Twitter]( [Facebook]( [Google+]( [Email]( [] [VTech to pay $650,000 to resolve allegations of data collection via toys]( Toymaker VTech Electronics will pay a $650,000 to resolve accusations that it violated the Children's Online Privacy Protection Act and left children's personal data accessible to hackers. The company says it has revised its data-security policies since a 2015 cyberattack. [The New York Times (free-article access for SmartBrief readers)]( (1/8) [LinkedIn]( [Twitter]( [Facebook]( [Google+]( [Email]( [] - [Sources of ad fraud traced; cost pegged at $1.13 billion annually]( MediaPost Communications (1/4) [] Practice & Policy [] [Cybersecurity, internal investigations among board concerns]( Cybersecurity, internal investigations and regulatory enforcement are among the hot topics for boards of directors this year, per Akin Gump. "It has become ever more common for a company's independent auditors to expect that the company will conduct an internal investigation, especially where the allegations could implicate financial matters or involve possible fraud," the law firm said. [CFO]( (1/8) [LinkedIn]( [Twitter]( [Facebook]( [Google+]( [Email]( [] - [Bill pushes fines, oversight for credit reporting agencies]( The Hill (1/10) [] [] I have come to believe over and over again that what is most important to me must be spoken, made verbal and shared, even at the risk of having it bruised or misunderstood. Audre Lorde, writer and civil rights activist [LinkedIn]( [Twitter]( [Facebook]( [Google+]( [Email]( Learn more about AllClear ID: [About AllClear ID]( | [AllClear ID Breach Response]( [AllClear ID Resources]( [Sign Up]( [SmartBrief offers 200+ newsletters]( Subscriber Tools: [Manage Subscriptions]( [Update Your Profile]( [Unsubscribe]( [Send Feedback]( [Archive]( [Search]( Contact Us: Editor - [Susan Rush](mailto:allclear@smartbrief.com) Mailing Address: SmartBrief, Inc.®, 555 11th ST NW, Suite 600, Washington, DC 20004 © 1999-2018 SmartBrief, Inc.® [Privacy policy]( | [Legal Information]( Â