Seen at thisisGloucestershire.co.uk: Hospital chiefs have written to more than 2,000 patients after their confidential records were stolen. Stroud General Hospital patients’ details were on a computer that was taken in a raid on the Field Road hospital at the end of March. NHS Gloucestershire Care Services has sent letters to 2,470 patients, as although…
Category: Breach Incidents
Bits ‘n Pieces
In the justice system: Yomi Jagunna, one of 8 people arrested last year as part of a New Jersey ring, pleaded guilty for his part in setting up a phony collection agency to obtain access to commercial databases where they obtained Social Security numbers and info. Jagunna pleaded guilty to selling 39 SSN, but prosecutors…
D.C. Mistakenly Sends Out 2,400 Students’ Personal Data
Bill Turque of The Washington Post reports one of those email attachment errors that frankly, have been all too common. How about routinely sending a test email before sending the real one to check to see what people will be receiving? Would that be so darned hard to do? The District agency that handles college…
Breach handling done right: Johns Hopkins Hospital
In 2007, when Johns Hopkins learned that backup tapes had been lost in transit, I complimented them for their handling of the incident. They’ve managed to impress me yet again — which is no small feat — by their handling of a recent incident…. In February, this site posted a story about a breach that…
Branch Banking & Trust employee arrested for selling client information
On January 14, law enforcement officials investigating another matter discovered client information from Branch Banking & Trust Co. (BB&T) in the possession of unauthorized individuals. Once alerted to the breach, BB&T conducted an internal investigation and discovered that a former employee who had legitimate access to client accounts had abused the access and had sold…
A few more breaches that didn’t make the news
Thanks to those states who post notifications online…. TravelCLICK, Inc. reported (pdf) that customers who used their web site to book hotel reservations may have had their data accessed by unauthorized others during the period February to March of this year. Reservation data included names, full credit card numbers, expiration date, but no CVV or…