Difference between revisions of "Insecurity"
Jump to navigation
Jump to search
| (4 intermediate revisions by one other user not shown) | |||
| Line 5: | Line 5: | ||
==Occurrences== | ==Occurrences== | ||
| + | {{#ask:[[Category:Events]][[Taxonomy::{{PAGENAME}}]] | ||
| + | |?Date= | ||
| + | |format=ul | ||
| + | }} | ||
== Laws and Regulations == | == Laws and Regulations == | ||
| − | The following laws and regulations address the | + | The following laws and regulations address the {{PAGENAME}} harm. |
| − | {{#ask:[[Category:Laws]][[Harms:: | + | {{#ask:[[Category:Laws]][[Harms::{{PAGENAME}}]] |
|?Country/Jurisdiction= | |?Country/Jurisdiction= | ||
| + | |?State or province= | ||
|format=ul | |format=ul | ||
}} | }} | ||
== Notes == | == Notes == | ||
Latest revision as of 09:23, 6 August 2020
Insecurity is a form of INFORMATION PROCESSING privacy harm under the Solove taxonomy. Insecurity is defined as "carelessness in protecting information from leaks or improper access."
- An e-commerce website allowing others to view an individual's purchase history by changing the URL (e.g. enterprivacy.com?id=123)
Additional comments
Occurrences
- 1Health.io and it's Inadequate Protection of Genetic Data and Unfair Privacy Policy (16 June 2023)
- 45 Million Medical Files Leaked (December 2020)
- AI Pandemic
- Amazon Gives Access to Alexa Recordings to a Wrong User (2018)
- Amazon Sidewalk: The Privacy Risks of Automatic Enrollment in Shared Networks (2023)
- Amazon heavily fined for invasion of privacy and insecurity (1 June 2023)
- Amazon’s Ring Security Camera (2020)
- Anthem Data Breach (2014)
- App Companies and Radio Broadcaster Siriux XM Accused of Sharing Sensitive Data Without Consent (5 December 2024)
- Apple Faces Lawsuit Over AirTag Stalking Dangers (6 December 2022)
- Attempt to Extort Toronto Hospital Using Stolen Patient Data (October 2020)
- Attorney-Client Calls by Jails (July 2020)
- Australian News-Sharing Platform Leaks 80 Thousand User Records (October 2020)
- Australian Security Cameras Hacked (June 2020)
- Belarusian Hackers Leaked Police Personal Information (September 2020)
- CPPA vs. Honda: First Non-Broker CCPA Enforcement (7 March 2025)
- Cambridge Analytica and Facebook Scandal (2016)
- Canada Revenue Agency Credential Stuffing Attack (August 2020)
- Central Health Employee Accessed Patient Data (July 2020)
- Child Safety Smartwatches Easy to Hack (2017)
- China's Massive Data Breach Reveals Growing Concerns Over Surveillance State (15 July 2022)
- Chinese facial recognition company exposes the database of people's locations (13 February 2019)
- Clearview AI Settles Lawsuit and Limits the Sales of Facial Recognition Database (May 2020)
- College Recruitment Database Leak (July 2020)
- Contact Tracing Apps (July 2020)
- Cyber Espionage on LinkedIn (July 2020)
- Data Breach Compromising 500 Thousands Call of Duty Accounts (September 2020)
- Data Breach at Immigration Law Firm (November 2020)
- Data Broker Exposes Millions Of Profiles (August 2020)
- Dating Apps User Information Leaked Online (June 2020)
- Disappearance of British woman: Privacy Concerns and Police Transparency (27 January 2023)
- Discord Admits Data Breach: Info of 760K Users Sold Online (14 August 2023)
- ESO Solutions Faces Privacy Class-Action Lawsuit Over Biometric Data (November 2024)
- EasyJet Cyber Attack (May 2020)
- Equifax Data Breach (2017)
- Exploit on Apple’s Secure Enclave (July 2020)
- Exploring the Perceptions of Location Sharing: Privacy vs. Affection (2023)
- F.B.I. Says Video Voyeur Hid Camera in Cruise Ship Bathroom (April 30 JL)
- FBI's De-anonymization Attack on Tor (November 2014)
- Facebook's "People You May Know" Feature (November 2017)
- Female Student Killed After Blackmail (2020)
- Flickr Share Images with MegaFace (2014)
- Freepik Company Data Breach (October 2020)
- GEDmatch Accidentaly Share Data With Police (July 2020)
- GEDmatch DNA Testing Website (2019)
- German Police Accesses People’s WhatsApp Message (July 2020)
- Google Bug Sent Private Videos to the Wrong People (2020)
- Google Collects Firebase Data (2020)
- Google+ Bugs Exposed Private Profile Information (2018)
- Grabs Four Privacy Breaches in Two Years (September 2020)
Laws and Regulations
The following laws and regulations address the Insecurity harm.
- (740 ILCS § 14/). Biometric Information Privacy Act. (United States, Illinois)
- (815 ILCS 530/) Personal Information Protection Act. (United States, Illinois)
- (815 ILCS § 530/10). Notice of breach; notice to Attorney General. (United States, Illinois)
- 17 CFR § 248.30 (United States)
- 201 CMR 17.00. Standards For The Protection of Personal Information of Residents of The Commonwealth. (United States, Massachusetts)
- 23 NYCRR 500. Cybersecurity Requirements For Financial Services Companies. (United States, New York)
- 42 CFR Subpart F (United States)
- 42 U.S.C. Subchapter VII (United States)
- 42 U.S.C. § 1396a (United States)
- 44 U.S.C. Chapter 33 (United States)
- 5 U.S.C. §552a (United States)
- 653-13.2(148, 272C). Standards of practice—appropriate pain management. (United States, Iowa)
- AL SB 301 (United States, Alabama)
- Alabama Data Breach Notification Act of (2018) (United States, Alabama)
- Bank Secrecy Act (United States)
- CA AB 713 (United States, California)
- CA AB No. 499 (United States, California)
- CA. SB 327. (2018) (United States, California)
- CH. 1. Trade and Commerce; General Provisions. (United States, South Carolina)
- CH. 19.255. Personal Information—Notice of Security Breaches. (United States, Washington)
- CH. 51-30. Notice of Security Breach for Personal Information. (United States, North Dakota)
- CH. 521. Unauthorized Use of Identifying Information. (United States, Texas)
- CH. 62. Protection of Personal Information. (United States, Vermont)
- CH. 743DD. Protection of Social Security Numbers and Personal Information. (United States, Connecticut)
- CH. 82. Security Freezes and Notification of Data Breaches. (United States, Massachusetts)
- CH. 93H Security Breaches (United States, Massachusetts)
- CH. 93I. Dispositions and Destruction of Records. (United States, Massachusetts)
- CO. HB 09-1338. (United States, Colorado)
- CO. HB 18-2118. Concerning Strengthening Protections For Consumer Data Privacy. (United States, Colorado)
- Cable Communications Policy Act of 1984 (United States)
- California Consumer Credit Reporting Agencies Act (United States, California)
- California Consumer Privacy Act of (2018) (United States, California)
- California Privacy Rights Act (United States, California)
- Children's Online Privacy Protection Rule (2000) (United States)
- Communications Act of 1934 (United States)
- Computer Fraud and Abuse Act of 1986 (United States)
- Computer Matching and Privacy Protection Act of 1988 (United States)
- Connecticut Insurance Information and Privacy Protection Act. (United States, Connecticut)
- Cybersecurity Enhancement Act of 2014 (United States)
- Cybersecurity Information Sharing Act of 2015 (United States)
- DEL. HB 180. Breaches of Security involving Personal Information. (United States, Delaware)
- Electronic Signatures in Global and National Commerce Act (United States)
- Employee Polygraph Protection Act (United States)
- Fair Credit Reporting Act of 1970 (United States)
- Family Educational Rights and Privacy Act (United States)
- Federal Information Security Management Act of 2002 (United States)
- Federal Policy for the Protection Human Subjects (United States)
- Foreign Intelligence Surveillance Act of 1978 (United States)
- Freedom of Information Act (FOIA) (United States)
- GEN § 899-AA. Notification; person without valid authorization has acquired private information. (United States, New York)