Jefferson Robbins reports: Confidential patient information may have been released in an email breach at Confluence Health, the Wenatchee medical organization said in a Saturday press statement. The information contained in an employee’s breached email account may have included “some patient information” including name and treatment, the press release said, but no financial information was…
Month: July 2018
TRAI Chief Tweets His UIDAI Number as a Security Challenge, and Promptly Gets Massively Pwned by @fs0c131y
No one could possibly have foreseen this: In a major embarassment for the Telecom Regulatory Authority of India (TRAI), alleged personal details of its chairman R S Sharma were leaked on Saturday after he tweeted his Aadhaar number asking if it had made him vulnerable to any security risk. The TRAI chief shared his 12-digit Unique Identification Authority…
BUSTED? A blackhat’s revenge exposes a 2-year old patient data hack that Holland Eye Surgery & Laser Center failed to disclose
A blackhat hacker known as “Lifelock” had claimed Holland Eye Surgery and Laser Center knew about his hack two years ago but failed to disclose it to patients or HHS. A follow-up investigation by DataBreaches.net uncovered evidence supporting his claim. The evidence has been turned over to federal regulators. On June 2, DataBreaches.net reported that…
Telstra customer stumbles across contact details of 66,000 fellow customers
Elise Baker reports: A 63-year-old layman, who admits he isn’t a “tech-savvy person”, has somehow been able to access a Telstra database containing the contact details of their customers. Robert Irvine has told 9NEWS he had an issue with his email and thought he might be able to fix it by logging on to his…
How they did it (and will likely try again): GRU hackers vs. US elections
Sean Gallagher does a deeper dive into the indictment of 12 GRU agents for meddling with the U.S. 2016 election. Here’s just a small snippet: After digging into this latest indictment, the evidence suggests Trump may not have made a very good call on this matter [publicly expressing doubt that Russia was involved]. But his…
Notification of data breach involving Palm Beach County Tax Collector’s Office leaves residents confused
Sam Smink reports on a case where 244 people have been notified of a data breach at the Palm Beach County Tax Collector’s Office that involves their names, addresses, and Social Security numbers,, but the notification is so poorly worded that no one really understands how to interpret what they are being told. Here’s where…