Lisa Baumann of AP reports: Montana officials are notifying 1.3 million people that their personal information could have been accessed by hackers who broke into a state health department computer server. […] Montana Chief Information Officer Ron Baldwin says malware was discovered on the health agency’s server May 22. The server contained names, addresses, birthdates,…
Month: June 2014
Just in Time Research: Data Breaches in Higher Education
Just in Time Research: Data Breaches in Higher Education This “Just in Time” research is in response to recent discussions on the EDUCAUSE Higher Education Information Security Council (HEISC) discussion list about data breaches in higher education. Using data from the Privacy Rights Clearinghouse, this research analyzes data breaches attributed to higher education. The results…
In SEC filing, Medtronic reveals possible patient records loss or deletion
Ah, kudos to Patrick Ouellette of HealthITSecurity.com, who dug into recent reports of a Medtronic breach more deeply than I did. While most media reiterated Medtronic’s claims that no patient data was involved, Patrick reports: Though medical device maker Medtronic revealed that hackers had entered network on two separate occasions last year in its Securities and…
High school computer whiz, 16, criminally charged with hacking grades: A+ for effort?
John Luciew reports: One thing is clear, the 16-year-old sophomore at the center of an alleged grade and attendance-record hacking case in Orange, N.J., apparently has some mad computer skills and plenty of smarts for executing elaborate plans. If only the student would apply those academic assets to his or her school work, then perhaps…
Shielding grisly scenes because there's no expectation of privacy in public spaces
Back in the day when I was an active emergency medical technician (EMT), we really didn’t have to deal with gawkers who might try to take pictures to upload to the Internet of horrific accidents that happened in public spaces. And if someone tried to poke their nose in to the accident scene, an authoritative “back…
UK: Aspers (Milton Keynes) breach results in undertaking
The Information Commissioner’s Office announced that Aspers (gaming operator for Milton Keynes casino) has signed an undertaking after violating the Data Protection Act. The undertaking explains that an employee, trying to e-mail personnel data for a new office to central payroll, accidentally emailed the personal data of 219 employees to an external – and incorrect…