Hunton & Williams LLP writes: On June 12, 2014, Connecticut Governor Dannel Malloy signed a bill into law that may require retailers to modify their existing Health Insurance Portability and Accountability Act (“HIPAA”) authorizations for pharmacy reward programs. The law, which will become effective on July 1, 2014, obligates retailers to provide consumers with a “plain language summary of…
Author: Dissent
Advanced Care Hospitalists notifies patients of breach at billing vendor
Melanie Payne reports: Carol Crisafi received a disturbing letter in the mail. It came from a physician’s group that had cared for her while she was in Brandon Regional Hospital east of Tampa. Advanced Care Hospitalists PL said their “former billing company,” Doctors First Choice Billing in Miramar, had posted patients’ personal information on a…
House Oversight asks Inspector General of the FTC to investigate FTC’s actions in LabMD case
CORRECTION: In the original post, below, the CEO of Tiversa informed PHIprivacy.net that they never turned over the full 1718 File until October 2013, when it was subpoenaed by the FTC. The FTC’s own documents indicate that they obtained the 1718 File from the Privacy Institute in response to the CID, which means that they…
LinkedIn vulnerability to MITM attacks puts your data at risk – Zimperium
Zimperium Mobile Defence says that their testing found that LinkedIn users are at risk of Man-in-the-Middle Attacks: What information is vulnerable? Using basic MITM, we found that an attacker can extract a LinkedIn user’s credentials, hijack their session to gain access to all other LinkedIn information and impersonate the user. The following information is exposed,…
AT&T Mobility reports breach involving service provider employees
So apparently it’s not enough that I read and think about gadzillions of breach notification letters. I’m supposed to actually report on them, too, huh? It seems I was so underwhelmed by an AT&T Mobility breach that I never reported on it here, even though mainstream media found it really newsworthy, with some even going so…
US Marshal CCs, rather than BCCs, those interested in anonymous Bitcoin auction
Megan Geuss reports: The US Marshals Service is in charge of auctioning off almost 30,000 bitcoins that the federal government seized from Silk Road servers last year, and it had planned to do so in an anonymous auction this month. But that anonymity was compromised on Wednesday when the US Marshals Service accidentally revealed the…