What’s that feeling when you learn your web hosting vendor for the past 7 years had unpatched vulnerabilities that permitted thousands of individuals’ personal information to be accessed without authorization? Nausea? Disgust? Something else? Florida Healthy Kids Corporation posted a notice on their site about an incident that they attribute to Jelly Bean Communications Design. …
Category: Health Data
Ca: Pharmacist Fined for Breaching Health Information
Looks like I missed this announcement from the Office of the Information and Privacy Commissioner of Alberta on January 19: An Edmonton-based pharmacist received a $5,000 fine, plus a $1,000 victim fine surcharge, on Friday, Jan. 15 for using health information in contravention of the Health Information Act (HIA). Stanislaus Soosai accessed and used the health information…
Dutch COVID-19 patient data sold on the criminal underground
Catalin Cimpanu reports: Dutch police have arrested two individuals on Friday for allegedly selling data from the Dutch health ministry’s COVID-19 systems on the criminal underground. The arrests came after an investigation by RTL Nieuws reporter Daniel Verlaan who discovered ads for Dutch citizen data online, advertised on instant messaging apps like Telegram, Snapchat, and Wickr. Read more…
CN: Leaks of personal information from epidemiological survey cast shadow over anti-epidemic work
Xu Keyue reports: The leak of personal information of people who took part in epidemiological surveys has sparked public concern about the privacy of COVID-19 patients, and cast a shadow over the safety and reliability of the surveys, which could negatively affect China’s epidemic prevention and control work. […] The Paper reported that hospital staff,…
Rady Children’s Hospital sued over Blackbaud breach
Law360 is reporting that Rady Children’s Hospital has been sued over the Blackbaud ransomware breach. The complaint alleges violations of California’s Confidentiality of Medical Information Act . The hospital had reported in October that they were notifying 19,788 about the breach. Access to the Law360 article is restricted to subscribers, but DataBreaches.net’s tracking file on…
HIPAA Enforcement by State Attorneys General
HIPAA Journal has a nice recap of of HIPAA enforcement actions by states attorney general. You can read it here.