From what appears to be some sort of phishing results or key logger results has resulted in thousands of accounts again being leaked on to pastebin. The accounts come from various places and all contain clear text passwords and comes in two parts. Be sure to check with CTRL+F for quick search in case you was silly enough to get…
Month: December 2011
UK: Patient data-sharing may not take account of anonymisation concerns
Earlier this week the Government announced proposals (40-page / 2.1MB PDF) to change the NHS Constitution so that information stored about patients would be automatically shared with life sciences researchers via a new anonymised database unless patients elect for their details not to be included. While welcomed by the life sciences industry as a boost to research,…
Breaches without details (updated)
When HHS’s breach tool reveals a breach I was not already aware of, I try to investigate or find media sources. Sometimes, despite my efforts, I can find nothing online to clarify a breach report. In some cases, I write to the organizations, who may – or may not – answer. Here are some breaches…
Missing or stolen Logan County Emergeny Ambulance Service Authority laptop contained data on over 12,000 patients
Logan County Emergeny Ambulance Service Authority in West Virginia notified HHS that a missing laptop contained protected health information on 12,563. The only coverage I can find on this was in the Logan Banner on November 18. Martha Sparks reported: Area residents who have been serviced by LEASA (Logan Emergency Ambulance Service Authority) may have their…
UK: Morecambe Bay Hospitals Trust under fire: Crudely-titled email sparks watchdog probe
Helen Perkins reports: A government watchdog has launched an investigation into an incident where midwives emailed an crudely-titled file with confidential patient details to an unknown party. The Health Service Ombudsman plans to probe staff at Furness General Hospital over a breach of data protection. Despite its confidential nature, an email by the University Hospitals…
AU: Railcorp blunder as personal details offered in rail sale (updated)
Finders, keepers? Can you just auction off lost USB drives left on trains without regard to whether they contain sensitive information? Maureen Shelley reports: A bunch of USB memory sticks, which hold private photos and data, left by passengers on Sydney trains were sold by Railcorp at a lost property auction. Computer security company Sophos,…