I’m so used to reading news stories about thefts where data were not encrypted that my jaw still occasionally drops when it turns out the data were encrypted. Here’s a story like that from Lancashire in the U.K.: […] Eddie Sutton, Lancashire County Council’s assistant chief executive, said: “I can confirm that a number of…
Author: Dissent
University of Virginia Medical Center reports lost handheld device held patients' personal and medical information (updated)
The University of Virginia Medical Center has posted a notice of a breach: The University of Virginia Medical Center and Continuum Home Infusion are committed to protecting the personal information entrusted to us by our patients and potential patients referred to us for care. Regrettably, this notice is regarding an incident involving some of that…
Did ADPI disclose enough in its notification and has it done enough for patients?
One of the things that happens with a blog like this one or DataBreaches.net is that an organization discovers that I’m covering their incident and starts checking my blogs to see what I’m writing. At the same time, I’m checking other sites to see what they’re saying. This week, I’m obviously focused on the ADPI…
FL: Volunteer at Jackson North used smartphone to steal data
Jackson North Medical Center in North Miami Beach is part of the Jackson Health System. It appears they, too, have suffered an insider breach for tax refund fraud purposes. John Dorschner reports that a volunteer at the medical center used a smart phone to take pictures of patient records: The volunteer’s misdeeds unraveled in a…
How many were affected by ADPI-Intermedix breach: help track this breach
As I had done with the Epsilon breach on DataBreaches.net, I’ve decided to devote a blog post to tracking organizations affected by the Advanced Data Processing (ADPI) breach. The San Francisco Chronicle reported that there were “27 agencies in 17 states whose patients may have had personal information stolen.” As you’ll see below, that does…
I know what GoTickets.com did last summer
A few weeks ago, I wrote a blog entry asking how many breaches GoTickets.com had really experienced. At the time, it appeared that they had had one breach in May 2012, which they reported to California (and, as I recently learned, New Hampshire and Maryland), but there was a puzzling report from American Express that…