Bisi Onile-Ere reports: A cyber attack on the Ramsey County Social Services may have comprised hundreds of clients’ private health information. In August, hackers gained access to the accounts of 28 employees in an attempt to divert their paychecks. “At Ramsey County this is the first time that we experienced something like this,” said John…
Month: December 2018
Computer with data on 20,000 people stolen in Denmark
Confidential data on 20,000 residents in Gladsaxe, a municipality in central Zealand, were saved locally on a computer stolen that was recently stolen from the town’s city hall. The computer was stolen during a break-in between during the weekend of November 30th to December 3rd, Politiken reports. Information stored on the machine includes personal registration numbers, age, gender,…
Pagosa Springs Medical Center pays $111,400 to settle OCR charges for failing to terminate employee’s access to ePHI after employment ended
Another enforcement action by HHS/OCR was announced today. This settlement involving Upper San Juan Health Service District (d/b/a Pagosa Springs Medical Center) is not an incident that I have been able to locate on HHS’s public breach tool or in this site’s records. According to the resolution agreement, the HHS investigation was opened in 2013. No,…
Over 40,000 credentials for government portals found online
Catalin Cimpanu reports: A Russian cyber-security firm says it discovered login credentials for more than 40,000 accounts on government portals in more than 30 countries. The data includes usernames and cleartext passwords, and the company believes they might be up for sale on underground hacker forums. Alexandr Kalinin, head of Group-IB’s Computer Emergency Response Team…
Data Breach at Florida Dispensary Highlights Vulnerabilities
Lukas Barfield reports: Last week, a Florida medical cannabis dispensary took their website offline after it was found that patient information was obtainable through the site’s basic search function. Sarasota-based AltMed is a licensed Medical Marijuana Treatment Center (MMTC) that also goes by the name MÜV. AltMed responded quickly by taking their website offline after…
UK: NHS to ban fax machines from 2020
From the This-Is-A-Good-Move dept., The Independent reports: Fax machines will be banned across the NHS in a bid to improve patient safety and cyber security. The outdated technology will be phased out by 31 March 2020 under plans announced by health secretary Matt Hancock. NHS organisations will be required to use modern communication methods instead, such as secure…