Skip to content
Glock Enterprises
  • Welcome
  • Blog
  • Resources
  • Support

JD Supra

Google Sued Under Illinois Biometric Information Privacy Act

8th October 20198th October 2019 peterglock

Collecting biometric information (or using Google, Facebook etc that do it for you)? I expect to see legislation like BIPA rolled out (not in China obvs) so make sure you’re […]

 Cyberlaw, JD Supra  Glock Takes Stock

Ethics Rules for Using Social Media in Legal Matters

4th October 20194th October 2019 peterglock

The same rules apply to employers e.g. don’t force your employees to ‘friend’ you…: Social media is increasingly important in eDiscovery, employment investigations and jury research. Using social media in […]

 Be Aware, Cyberlaw, JD Supra  Glock Takes Stock

The notification dilemma – what can you tell the public when you don’t yet know the extent of a data security incident?

2nd October 20192nd October 2019 peterglock

Useful tips about tuning your disclosure messages…: In June, BCLP hosted a high profile data breach seminar, in which industry specialists, the ICO’s Head of Investigations, a former convicted hacker […]

 Cyberlaw, JD Supra  Glock Takes Stock

Is Google Drive HIPAA Compliant?

2nd October 20192nd October 2019 peterglock

SAme question applies to Box, DropBox, Amazon S3… […] In short, yes Google Drive is HIPAA compliant, however, before it can be used in a HIPAA compliant manner there must […]

 Be Aware, Information Security, JD Supra  Glock Takes Stock

CCPA Security FAQs: Can a consumer bring suit in a California state court under the CCPA even if they were not injured by a data breach?

27th September 201927th September 2019 peterglock

Just in case you were wondering…: Yes, if they satisfy the elements of a CCPA data breach claim. Section 1798.150 of the CCPA permits consumers to “institute a civil action” […]

 Cyberlaw, JD Supra  Glock Takes Stock

Privacy and Data Security Alert

26th September 201926th September 2019 peterglock

Tightening of privacy legislation on the West Coast…: […] Subject to the governor’s signature, California’s breach-notification law will gain additional requirements related to biometric information due to the passage of […]

 Cyberlaw, JD Supra  Glock Takes Stock

The Capital One Data Breach and Vendor Cybersecurity Risks

16th September 201916th September 2019 peterglock

Interesting podcast on the Capital One breach. I’ve been attempting to interest my clients in tools that monitor for their data being spread around, via their supply chain and/or unsecured […]

 Be Aware, Information Security, JD Supra  Glock Takes Stock

[Video] Life With GDPR: Episode 32- Lessons Learned in Year 1 of GDPR, Part 2

6th September 20196th September 2019 peterglock

This is a useful summary for we Europeans as well. In my role as a DPO I tend to use the DPIA as my starting point for each engagement. DSARs […]

 Cyberlaw, JD Supra  Glock Takes Stock

Initial Coin Offerings (ICOs) on SEC’s Radar

27th August 201927th August 2019 peterglock

Full disclosure: I have been involved in a number of blockchain-based startups in the past couple of years so I’ve seen first-hand the chilling effect of the regulatory interest in […]

 Digital Business, JD Supra  Glock Takes Stock

Software Provider and DOJ Reach $8.6M Settlement for FCA Case Involving Alleged Cyber Security Shortcomings

22nd August 201922nd August 2019 peterglock

TL;DR – don’t sell software with known security vulnerabilities…: […] The case, United States of America v. Cisco Systems, involved allegations from a former-subcontractor whistleblower that Cisco Systems knowingly sold video […]

 Cyberlaw, JD Supra  Glock Takes Stock

Posts navigation

← Older posts

Recent Posts

  • Mafia-type gangs, not foreign powers blamed for cyber attacks on French hospitals
  • Microsoft shares CodeQL queries to scan code for SolarWinds-like implants
  • GCHQ sets out rules of the road for AI in cyber
  • Insultingly, Facebook continues to try to convince users that privacy-violating targeted ads are good
  • How $100M in Jobless Claims Went to Inmates

Get in touch

Email: [email protected]


View Glock Enterprises Ltd profile on Ariba Discovery

Data Protection Register

Registered with the ICO: ZA494319

About

Glock Enterprises Ltd. Registered in England & Wales No. 11183883

VAT No: GB 361 2795 89

Glock Enterprises (Europe) OÜ
Registered in Estonia
No. 16149069

All content (c) Glock Enterprises Ltd 2021

Pages

  • Blog
  • Privacy Policy
  • Resources
    • Free Trial – Private Threat Intelligence
    • White Paper: Building a Business Case for Cybersecurity Asset Management
    • White Paper: Cyber Deception – Migrating to an alternative platform
    • White Paper: Hunting for Threats in Operational Technology
    • White Paper: Internet Connected Storage
    • Whitepaper: 5 Steps to Building a Threat Modelling Program for AWS
    • Whitepaper: Coping with a flood of Data Subject Access Requests
  • Services
  • Support
  • Welcome

The Latest from Facebook

Glock Enterprises Ltd

4 hours ago

Glock Enterprises Ltd
buff.ly/37RXZQmHow $100M in Jobless Claims Went to InmatesA look at a “nice little earner” for prisoners...:The U.S. Labor Department’s inspector general said this week that roughly $100 million in fraudulent unemployment insurance claims were paid in 2020 to criminals who are already in jail. That’s a tiny share of the estimated tens of billions of dollars in jobless benefits states have given to identity thieves in the past year. To help reverse that trend, many states are now turning to a little-known private company called ID.me. This post examines some of what that company is seeing in its efforts to stymie unemployment fraud.These prisoners tried to apply for jobless benefits. Personal information from the inmate IDs has been redacted. Image: ID.meA new report (PDF) from the Labor Department’s Office of Inspector General (OIG) found that from March through October of 2020, some $3.5 billion in fraudulent jobless benefits — nearly two-thirds of the phony claims it reviewed — was paid out to individuals with Social Security numbers filed in multiple states. Almost $100 million went to more than 13,000 ineligible people who are currently in prison.The OIG acknowledges that the total losses from all states is likely to be tens of billions of dollars. Indeed, just one state — California — disclosed last month that hackers, identity thieves and overseas criminal rings stole more than $11 billion in jobless benefits from the state last year. That’s roughly 10 percent of all claims.Bloomberg Law reports that in response to a flood of jobless claims that exploit the lack of information sharing among states, the Labor Dept. urged the states to use a federally funded hub designed to share applicant data and detect fraudulent claims filed in more than one state. But as the OIG report notes, participation in the hub is voluntary, and so far only 32 of 54 state or territory workforce agencies in the U.S. are using it.Much of this fraud exploits weak authentication methods used by states that have long sought to verify applicants using static, widely available information such as Social Security numbers and birthdays. Many states also lacked the ability to tell when multiple payments were going to the same bank accounts.To make matters worse, as the Coronavirus pandemic took hold a number of states dramatically pared back the amount of information required to successfully request a jobless benefits claim.77,000 NEW (AB)USERS EACH DAYIn response, 15 states have now allied with McLean, Va.-based ID.me to shore up their authentication efforts, with six more states under contract to use the service in the coming months. That’s a minor coup for a company launched in 2010 with the goal of helping e-commerce sites validate the identities of customers for the purposes of granting discounts for veterans, teachers, students, nurses and first responders.ID.me says it now has more than 36 million people signed up for accounts, with roughly 77,000 new users signing up each day. Naturally, a big part of that growth has come from unemployed people seeking jobless benefits.To screen out fraudsters, ID.me requires applicants to supply a great deal more information than previously requested by the states, such as images of their driver’s license or other government-issued ID, copies of utility or insurance bills, and details about their mobile phone service.When an applicant doesn’t have one or more of the above — or if something about their application triggers potential fraud flags — ID.me may require a recorded, live video chat with the person applying for benefits.This has led to some fairly amusing attempts to circumvent their verification processes, said ID.me founder and CEO Blake Hall. For example, it’s not uncommon for applicants appearing in the company’s video chat to don disguises. The Halloween mask worn by the applicant pictured below is just one example.Image: ID.meHall said the company’s service is blocking a significant amount of “first party” fraud — someone using their own identity to file in multiple states where they aren’t eligible — as well as “third-party” fraud, where people are tricked into giving away identity data that thieves then use to apply for benefits.“There’s literally every form of attack, from nation states and organized crime to prisoners,” Hall said. “It’s like the D-Day of fraud, this is Omaha Beach we’re on right now. The amount of fraud we are fighting is truly staggering.”According to ID.me, a major driver of phony jobless claims comes from social engineering, where people have given away personal data in response to romance or sweepstakes scams, or after applying for what they thought was a legitimate work-from-home job.“A lot of this is targeting the elderly,” Hall said. “We’ve seen [videos] of people in nursing homes, where folks off camera are speaking for them and holding up documents.”“We ha… ... See MoreSee Less

Photo

View on Facebook
· Share

Share on Facebook Share on Twitter Share on Linked In Share by Email

Proudly powered by WordPress | Theme: Moesia by aThemes