"“Medical” Monitoring for Non-Medical Harms: Evaluating the Reasonable " by James Graves

Article Title

“Medical” Monitoring for Non-Medical Harms: Evaluating the Reasonable Necessity of Measures to Avoid Identity Fraud After a Data Breach

Authors

Abstract

In July 2005, “reformed” hacker Albert Gonzalez noticed an insecure wireless network at a Marshalls department store in Miami. After exploiting the vulnerability, Gonzalez and his accomplices installed programs that captured credit card numbers. They stored the credit card numbers on servers in Latvia and Ukraine, created ATM cards using some of the numbers, and used those cards to withdraw hundreds of thousands of dollars in cash. Fifteen months later, Marshalls’ parent company, TJX, announced that forty-five million of its customers’ credit card numbers had been exposed to the thieves.

Recommended Citation

James Graves, “Medical” Monitoring for Non-Medical Harms: Evaluating the Reasonable Necessity of Measures to Avoid Identity Fraud After a Data Breach, 16 Rich. J.L. & Tech 2 (2009).
Available at: https://scholarship.richmond.edu/jolt/vol16/iss1/3

Download

Included in

Computer Law Commons, Health Law and Policy Commons, Internet Law Commons

COinS