Allison Bell reports: The federal agency that enforces health data security regulations did a poor job of protecting the data it was using in its own investigations. Officials at the Office of Inspector General at the U.S. Department of Health and Human Services announced that conclusion in this latest report. Thomas Salmon and other HHS…
Month: December 2013
Louisiana Agencies Notified of Breach Across Certain JPMorgan Chase Systems; Breach Not Confined to Louisiana (Update1)
Press release issued by Commissioner Kristy Nichols: BATON ROUGE – Commissioner Kristy Nichols announced that three Louisiana state agencies were notified by JP Morgan Chase today that a data breach may have exposed the personal information of certain Louisiana citizens. The Louisiana Department of Revenue (LDR), the Louisiana Workforce Commission (LWC), and the Louisiana Department…
HSBC offering customers credit monitoring services after rogue employee stole and misused their information
HSBC is offering some customers five years’ worth of free credit monitoring service after learning that a rogue employee had been improperly accessing customer information since early this year. The offer of extended services was for those who information had been accessed multiple times. Others were offered 1 year of free services. You can read…
NJ: Drew University notified some employees and dependents after employee’s e-mail account was hacked
A Drew University employee’s e-mail account containing e=mails with personal information on employees and family members/dependents was hacked. The personal information included names, addresses, dates of birth, and Social Security numbers. The employee reported the hacked account on October 1, and following forensic investigation and an address search by their print vendor, notifications were sent…
Maple Grove Farms of Vermont site hacked; customers notified
Jordan Greenberg, Vice President of Maple Grove Farms of Vermont writes: On November 16, 2013, B&G Foods North America, Inc. discovered that an unauthorized third party had earlier that day attacked the online e-commerce website associated with our Maple Grove Farms brand. We are sending you this letter as a cautionary measure because we believe…
Genesis Rehabilitation Services breach also affected patients
Back on October 29 and over on DataBreaches.net, I reported: Genesis Rehabilitation Services in Pennsylvania reports that an employee lost a thumb drive with the unencrypted personal information of 33 employees, agency employees, or applicants to GRS. The information on the drive included individuals’ names, postal or email addresses, and Social Security numbers. The drive had reportedly…