CBS2 reports: Bodybuilding.com announced Friday that some of their employment-related information may have been accessed in a data security incident. The possible information accessed could have been group health plan subscriber information, such as protected health information of certain employees and former employees. “While the Company has no evidence that personal information was accessed or…
Month: April 2019
TX: EmCare Says Patient and Employee Personal Data Were Hacked
Jim Silver and Hailey Waller report: EmCare Inc. recently learned an unauthorized party obtained access to a number of employees’ email accounts that contained the personal information of as many as 60,000 individuals, 31,000 of which are patients, the company said in an email. On Feb. 19, the physician-services provider determined the accounts contained some…
United Way of the Big Bend investigates possible data security breach
WTXL reports: The United Way of the Big Bend is investigating a possible data security breach that occurred when taxpayer information was stolen from an employee in March. The organization says that 64 taxpayers’ information may be exposed after their information was stolen from the vehicle of a Volunteer Income Tax Assistance Program (VITA) site…
Iranian Ride-Hailing App Database Exposure
Bob Diachenko reports: On April 18th, during our regular security audit of nonSql databases with BinaryEdge search engine, I have discovered an open and publicly available MongoDB instance which contained astonishingly sensitive information on Iranian drivers. Information was structured to include the following data fields: Driver first name and last name SSN (10-digits Iranian ID…
MD Anderson ousts 3 scientists over concerns about Chinese data theft
Todd Ackerman reports: MD Anderson Cancer Center is ousting three scientists in connection with concerns China is trying to steal U.S. scientific research, the first such publicly disclosed punishments since federal officials directed some institutions to investigate specific professors in violation of granting agency policies. MD Anderson took the actions after receiving e-mails last year…
PA: Millions of rehab records exposed on Steps to Recovery’s unsecured database
Laura Hautala reports: It’s some of the most sensitive medical information a person could have. Records for potentially thousands of patients seeking treatment at several addiction rehabilitation centers were exposed in an unsecured online database, an independent researcher revealed Friday [link corrected by DataBreaches.net]. The records included patients’ names, as well as details of the…