A mother says a breach at Rady Children's Hospital revealed her daughter's sensitive medical records.
A judge ruled that plaintiffs couldn't show monetary damage in suit filed after a breach exposed data on 2.6 million of the retailer's customers.
For the second time in as many months, an Illinois judge has dismissed a class-action suit against Advocate spawned by a data breach last summer.
Frustrated by the NSA dragging its heels on a FOIA request, the EFF takes the NSA to court to secure records on vulnerabilities disclosure criteria.
A U.S. District judge says LinkedIn's email marketing practices run counter to California law.
The FTC filed a complaint earlier this year against the popular messaging service alleging the app deceives users about the amount of personal information it collects.
A motion filed in Maricopa County Court says that by delaying notification and lying about last April's breach, MCCCD put victims' PII at risk.
Plaintiffs claim that stolen personal information was sold and used for fraud and identity theft.
The Federal Trade filed a complaint against the operators of "Jerk.com" for breaking the FTC Act by misleading consumers.
Google must post a notice on its French homepage stating that it has been fined more than $200,000 for privacy violations.
A U.S. District Court has found that Valve, maker of the Steam video game distribution service, is not liable for a breach last November that exposed personal data belonging to some 35 million subscribers.
A South Carolina attorney has amended a lawsuit to include compliance assessor Trustwave as a defendant, opening the door to whether a security provider can be held liable for a breach at a customer's site.
Less than two weeks after the book giant revealed that PIN pads at dozens of its stores were compromised, four victims have filed lawsuits, alleging the company failed to properly protect their data and notify them in reasonable timeframe.
A software developer and seven rental computer distributors are accused of installing spy software on machines that was capable of logging keystrokes and taking webcam photos.
The world's largest hotel operator is disputing allegations that it violated the FTC Act when it sustained a series of data security breaches.
Four victims of a massive insider scam at the mortgage lender were unable to prove that they suffered identity theft, just annoying calls from telemarketers.
The suit contends that Yahoo didn't properly protect the personal information of some 450,000 users of its Contributor Network.
A class-action lawsuit has been filed against the popular business-networking website over the recent hack that led to theft of nearly 6.5 million stolen passwords.
If a data breach occurs, when are companies more likely to be sued by consumers or employees? A Carnegie Mellon University researcher joined me on the SC Magazine Podcast to discuss.
A Russian computer programmer has denied allegations by Microsoft that he was responsible for manning a prolific spam botnet.
The largest class-action settlement in Hawaii's history is related to data breaches at University of Hawaii campuses.
Microsoft believes it has found the person responsible for the spam-pushing Kelihos botnet, according to a new lawsuit.
Consumers are more willing than ever to sue following a data breach, but they face an uphill climb in court. However, a recent court ruling may flip the odds in their favor.
While TD Ameritrade maintains that no identity theft resulted because of a 2007 breach, it has decided to compensate customers "in the interest of helping ease" their concerns.
Microsoft has prevailed in its civil case against the operators of the Rustock botnet, which in its heyday controlled a network of more than a million computers.
AT&T has accused two Utah men of carrying out a data mining scheme involving auto dialer software that cost the company more than $6.5 million.
Indianapolis-based health insurer WellPoint will pay $100,000 to settle a data breach that exposed the personal information of 32,000 of its Indiana customers.
A new class-action lawsuit filed against Sony in the wake of the massive PlayStation Network/Qriocity breach claims the company fired security workers just days before the breach occurred.
In a potentially precedent-setting court ruling, a U.S. magistrate judge has ruled that a bank is not responsible for covering the loss of nearly $300,000 that was illegally wired out of the bank account belonging to a Maine construction company.