When backup tapes containing patient information on patients of Peninsula Orthopaedic Associates were stolen while in transit, the practice notified approximately 100,000 patients. Now, Earl Holland reports that the group subsequently discovered that the stolen backup tape also contained credit or debit card information on up to 400 patients. Peninsula Orthopaedic Associates has sent an…
Author: Dissent
Immigrant Legal Resource Center database hacked
The Immigrant Legal Resource Center was apparently hacked (pdf) at some time prior to April 10, but there’s no indication in their notification to the NH Attorney General’s Office as to how many people had their names and credit card numbers compromised.
United Food and Commercial Workers International employee data on stolen laptop
A laptop stolen from a United Food and Commercial Workers International (“UFCW”) office on March 10 contained personal information of UFCW members, former members, and retirees including names and addresses, Social Security numbers, phone numbers, birth dates, and e-mail addresses, but no financial information, according to a notification (pdf) filed by their lawyers with the…
Deja vu all over again at Binghamton University
Robert Hadad-Zlokower of the Binghamton University Pipe Dream reports: Binghamton University announced Tuesday that it had let WHRW, the student-run radio station, members off the hook for “gaining access” this March to an unlocked room filled with students’ personal information … a few hours later, it happened again. While he was walking through an entrance…
Possible Mass Security Breach Involving LexisNexis and Investigative Professionals (Update 3)
Ariel Bashi of CBS News reports: CBS News has learned of another data breach potentially compromising the personal information of thousands of people. Companies Lexis Nexis and Investigative Professionals have sent up to 40,000 letters to customers whose “sensitive and personally identifiable” information may have been viewed by individuals who should not have had access….
Heartland Payment Systems Returns to Visa’s List of PCI DSS Validated Service Providers
From the press release: Following the completion of its annual Payment Card Industry Data Security Standard (PCI DSS) assessment, Heartland Payment Systems has successfully validated its compliance with PCI DSS. As such, Heartland is returning to Visa’s List of PCI DSS Validated Service Providers. According to Visa, Heartland will appear on the list – which…