A follow-up on a breach case previously reported on this site. From the FTC: Following a public comment period, the Federal Trade Commission has approved a final order resolving FTC allegations that GMR Transcription Services, Inc., engaged in deceptive and unfair information security practices that exposed the personal information of thousands of consumers online, in…
Category: Health Data
Many HHS investigations still open years later?
If you’re hoping that HHS will do anything about the recent Community Health Systems breach affecting 4.5 million patients across the country, don’t hold your breath. Not only is the incident not even up yet on HHS’s public breach tool, where it will become the second largest breach since such public reporting went into effect…
Heartbleed Not Only Reason For Health Systems Breach
Community Health Systems’ bad patching practices are nothing compared to its poor encryption, network monitoring, fraud detection, and data segmentation, experts say. Read more on Dark Reading. If HHS wants to go after CHS, this article certainly lays out the technical security safeguards that may not have been in place.
Heartbleed Not Only Reason For Health Systems Breach
Community Health Systems’ bad patching practices are nothing compared to its poor encryption, network monitoring, fraud detection, and data segmentation, experts say. Read more on Dark Reading. If HHS wants to go after CHS, this article certainly lays out the technical security safeguards that may not have been in place.
CHS Hacked via Heartbleed Vulnerability
From TrustedSec: As many of you may have already been aware, a breach at Community Health Systems (CHS) affecting an estimated 4.5 million patients was recently revealed. TrustedSec obtained the first details on how the breach occured and new information relating to this breach. The initial attack vector was through the infamous OpenSSL “heartbleed” vulnerability…
LabMD Wants FTC Sanctioned For ‘Secretive Relationship’
Law360 reports: LabMD Inc. asked an administrative law judge on Thursday to sanction the Federal Trade Commission for allegedly having a “secretive relationship” with the source of a key piece of evidence in its ongoing data breach case against the company.LabMD claims the FTC failed to authenticate a key piece of evidence received from a…