WABI reports on a hack impacting employee, but not student, data: Last week, former and current employees of AOS 77 in Washington County were made aware of a data breach in the school department’s central office. The superintendent tells us he sent a letter to about 2,000 people making them aware some of their personal…
Month: December 2018
Ships infected with ransomware, USB malware, worms
Catalin Cimpanu reports: Ships suffer from the same types of cyber-security issues as other IT systems, a recent document released by the international shipping industry reveals. The document is the third edition of the “Guidelines on Cyber Security onboard Ships,” an industry-approved guide put together by a conglomerate of 21 international shipping associations and industry…
No Data Breach, No Case
Michael Mayer of Faruki writes: An Ohio federal district court recently handed down a ruling that will make companies storing client data breathe a sigh of relief. In Williams-Diggins v. Mercy Health, Case No. 3:16-cv-1938 (N.D. Ohio), a patient sued a health system because of deficient patient information software. (The defendant-health system certified that it subsequently…
‘It cannot expect a private business to continue to clean up its errors’: Privacy czar blasts health authority for faxing patient records to computer store — again
Ragas Clan reports: Darryl Arnold would have unplugged his fax machine months ago if he didn’t need it for work. That’s because the Saskatchewan Health Authority keeps faxing him confidential patient information, most recently a five-page catheterization report that included a patient’s personal information, medical history and treatment recommendations. According to the provincial privacy czar,…
Aspire Health says stolen emails never opened, abandons hunt for hacker
Brett Kelman reports an update to a phishing incident in September: A large Nashville-based healthcare company that was hacked earlier this year said Tuesday an internal investigation has revealed the stolen emails were intercepted before they were ever opened by the cyberattacker. Aspire Health, which offers in-home treatment in 25 states, has also abandoned its legal hunt for the…
R.I. pension system sues Google for not disclosing breach
Donita Taylor reports: Rhode Island is suing the parent company of Google for hiding a security breach that affected 52.5 million users, state General Treasurer Seth Magaziner stated in a news release Tuesday. “Google had an obligation to tell its users and investors that private information wasn’t being protected,” Magaziner stated in the release. […]…