Marc Hershberg reports: Someone snuck into the Shubert Organization. According to a letter mailed to certain customers, Shubert executives came across some suspicious activity on an employee’s email account last February, and teamed up with some forensic experts to investigate what was happening. The probe found that someone had gained access to several employee’s email…
Month: May 2019
Ca: Some Brampton Residents Affected by Serious Privacy Breach
Rajpreet Sahota reports: Some Brampton residents have had their private information leaked in the wake of a privacy breach, the Region of Peel says. The Region of Peel announced that there was a breach of personal information on June 8, 2018. On March 13, the personal information of approximately 13,000 individuals on a wait list for Regional services…
Medical Informatics Engineering Agrees to Pay $100,000 and to Implement Corrective Action Plan to Settle 2015 HIPAA Breach
From HHS, an update on the Medical Informatics Engineering breach of 2015 that resulted in a multi-state lawsuit (the first of its kind) in December, 2018: Medical Informatics Engineering, Inc. (MIE) has paid $100,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services, and has agreed take corrective…
It’s been a strange week, Part 1. (Updates on the Cohen, Bergman, Klepper incident and the Total Registration incident)
The other day, Joseph Lorenzo Hall, PhD commented on Twitter about how doing notifications of breaches or leaks is a pretty thankless job. And it often is. Yesterday and today, however, I feel pretty good about the time I spent trying to make two notifications. The first “it was worth it afterall” experience involved a…
New York Launches Cybersecurity Unit
Kade N. Olsen, Michael F. Buchanan and Craig A. Newman of Patterson Belknap write: Today, New York’s top financial regulator, the Department of Financial Services, announced the formation of a dedicated “Cybersecurity Division.” In a news release issued earlier today, the agency said the new division “will focus on protecting consumers and industries from cyber…
Lower fines for firms that admit role in data breach
Hariz Baharudin reports: Organisations that admit their role in a data breach and plead guilty to it may get a lower financial penalty from the privacy watchdog if the cause is a common breach. Common breaches include URL manipulation, poor password management or printing errors resulting in incorrect recipients. The Personal Data Protection Commission (PDPC)…