This past week, Brian Kreb broke the story about a breach involving Lexis-Nexis. Because it’s an active investigation and because businesses generally aren’t that forthcoming about the number of individuals whose records have been compromised, there have been no numbers published.
But on a governmental Wisconsin web site, it says that the company experiencing the breach was Seisint in Miamisburg, OH and that there were 1800 Wisconsin residents who had their name, address, SSN, and driver’s license number accessed improperly.
As with the IBM incident, I find myself wondering what the total numbers will look like if we can find out more from mandatory disclosures to states. That provision in S.1178 to have all incidents requiring notification listed on an FTC web site sounds better and better.