Drapetomaniac

I originally talked about the BBB data breach here

The Better Business Bureau has announced it is restructuring it’s business.

With in those announcements comes the statement:
“The BBB on Oct. 1 launched a new logo and national database consolidating its 130 regional databases at www.bbb.org.”

I hoped they would attempt to move to a new system, but after beginning the complaint process, it was apparent the same system is in use.

The Better Business Bureau has repeatedly praised the flexibility of their system and efficiency in posting data online:
“The one part of eBINDr and the Hurdman system that I appreciate the most , is when another Bureau requests a change or a report you get that information too. ”

It is often said that security interferes with usability and you have to measure the trade-offs to determine the balance. It doesn’t appear as if anyone thought that the ease of posting data online meant it was easily and quickly exposed. Two two linked comments above span two years, so I have to wonder how many years of data are online and by how many branches.

Another Alert

The Better Business Bureau has issues its second phishing alert since being notified they are leaking customer data online.

The information is scarce and it’s generic information about trusting e-mails. They do not warn people not to post more personal information than already required by the system and they haven’t changed their privacy statement to mention information is publicly available.

They do offer good information for others to follow on id theft and privacy though.

Still no response to my complaints from August or September…

When George Clooney was admitted to a hospital recently, several medical professionals took a peek at his records for curiosity sake.The workers were suspended for a month, but both Clooney and the hospital union say that the punishment was too harsh. Mind you, they could face jail time for the federal crime they committed, but suspensions are too harsh.

The ethical problems alone are a cause for concern, but this is also a clear violation of the law. Clooney’s statement was, “while I very much believe in a patient’s right to privacy, I would hope that this could be settled without suspending medical workers.” The best thing for people who violate ethical situations is when the victim who spends very little time considering such matters excuses it.

The bigger problem is the union. This is an established organization that is basically forming a thin blue line in the face of criminal activity. At least the hospital is on record

These folks have been suspended