On May 6, 2016, Planned Parenthood of the Heartland discovered a potential breach of patients’ personal health information. Hard copy patient records from August 1, 2008 – April 30, 2014 may have been accessed by unauthorized parties during the April 2016 closure and subsequent sale of our Dubuque health care center. This potential breach is…
Month: July 2016
UK: NHS seeks cure for its costly digital headache
Gill Hitchcock reports: This May two NHS trusts were fined almost £400,000 for failing to protect confidential information. Chelsea and Westminster revealed the email addresses of HIV service users, while Blackpool teaching hospitals published private information about thousands of staff online. But are these incidents simply isolated sloppiness or a growing problem as the NHS digitises its records?…
DID Electrical says more than 300 people have card details stolen after online security breach
Keeley Ryan reports: An electrical goods retailer has been forced to advise more than 300 of its customers to cancel their credit cards after an online security breach. DID Electrical said it was told on Monday that its website – DID.ie – had been subjected to a sophisticated cybercrime, resulting in a data security breach….
Thomson Reuters World-Check Terrorist Database, Open For The World To View
Yesterday, I linked to a report about yet another misconfigured database. This was one leaking more sensitive information, as the due diligence data were from Thomson Reuters’ World-Check service, although the 2014 database that was exposed on the internet belonged to neither of those entities. The due diligence aspect is that banks and other institutions are…
Order of Malta breach contains unhashed gov’t credentials
Jeremy Seth Davis reports: A white hat researcher discovered a pair of data breaches in which email and password credentials of government employees were dumped on Pastebin. Hackers dumped almost 4,000 credentials gained during two separate breaches that contained credentials linked to U.S. and Ukrainian government employees. The attackers breached a website affiliated with the…
AU: TeleChoice forced to compensate customers over 2014 data breach
Sometimes by the time a case is resolved, I’ve forgotten what it was. I’m old, I forget. Thankfully, I can check the archives of this site to see if I had covered it before. Happily for me, I had covered this one, which involved TeleChoice somewhat stunningly leaving consumers’ personal information in a shipping container…