Articles by Jeff Goldman 

Oregon Employment Department Notifies 851,322 People of Data Breach

Those affected weren't notified until two weeks after the breach was discovered.

Employee Error at Touchstone Medical Imaging Exposes 307,528 Patients' Personal Data

A folder containing billing information was mistakenly left accessible online.

Staples Investigates Possible Data Breach

Potentially affected locations include seven in Pennsylvania, three in New York City, and one in New Jersey.

Chinese Government Targets iCloud Users with MITM Attack

All Chinese visitors to iCloud.com are being directed to a fake page designed to steal login credentials.

Cost of Cybercrime in U.S. Reaches $12.7 Million per Organization

The number of cyber attacks per week surged by 176 percent over the past five years, according to the Ponemon Institute.

Forgotten Passwords Cost Companies $200,000 a Year

'Bottom line, it's time to kill passwords,' says Centrify CEO Tom Kemp.

Google Researchers Warn of POODLE SSL Vulnerability

Twitter immediately disabled SSL 3.0 support following the disclosure.

No Easy Fix for Point-of-Sale Security

Why is securing point-of-sale systems so hard, and what can retailers do to improve their PoS security postures?

Hackers Claim Breach of 7 Million Dropbox Accounts

Dropbox says it wasn't hacked, and that any stolen login credentials came from breaches at other sites.

Kmart Stores Infected with Point-of-Sale Malware

The company says the infection came from 'a new form of malware that was undetectable by current anti-virus systems.'

Dairy Queen Acknowledges Major Credit Card Breach

Almost 400 locations are affected, exposing customer names, payment card numbers and expiration dates.

JPMorgan Hackers Also Hit Over a Dozen Other Financial Firms

Additional targets included Citigroup, HSBC, E*Trade, Regions Financial, ADP and Bank of the West, though it appears that no data was stolen.

Misconfigured Server Causes Massive Data Breach at MBIA

Account numbers and balances were exposed, along with detailed instructions on how to authorize new bank accounts for deposits.

FDA Issues Cyber Security Guidance for Medical Devices

The guidance is intended to help device manufacturers mitigate security risks.

AT&T Acknowledges Another Insider Breach

An employee inappropriately accessed Social Security numbers, driver's license numbers, and Customer Proprietary Network Information (CPNI).

JPMorgan Data Breach Impacts 76 Million Households, 7 Million Businesses

'You were affected if you used the following Web or mobile services: Chase.com, JPMorganOnline, Chase Mobile or JPMorgan Mobile,' the company says.

Android, iOS Malware Targets Hong Kong Protesters

Lacoon researchers describe the iOS version of the malware as the 'first iOS Trojan linked to Chinese government cyber activity.'

Supervalu Hacked Again

Payment card account numbers may have been accessed, along with some cardholder names and expiration dates.

General Motors Appoints First Product Cybersecurity Officer

Mark Reuss, GM's vice president of global product development, says it's crucial to look at vehicle technology 'on a critical systems level.'

Japan Airlines Breach Exposes 750,000 People's Personal Data

Malware was installed on 23 company computers, seven of which were found to be sending data to a server in Hong Kong.

Jimmy John's Credit Card Breach Affects 216 Locations

Point-of-sale systems vendor Signature Systems says 108 independent restaurant locations are also affected.

Shellshock Bash Vulnerability: Worse Than Heartbleed

The flaw could 'allow a remote attacker to execute arbitrary code on an affected system,' according to US-CERT.

FBI, DHS Warn of Surge in Insider Threats from Disgruntled Employees

Attacks by disgruntled employees have cost companies as much as $3 million, according to a recent alert.

Data Breach at TripAdvisor's Viator Impacts 1.4 Million Users

880,000 customers' credit card information may have been exposed, along with another 560,000 customers' email addresses and encrypted passwords.

Employee Error Exposes Over 10,000 Patients' Personal Data

The data was mistakenly made accessible via Google searches between December 2013 and April 2014.