Montefiore Medical Center in New York is notifying patients of yet another insider-wrongdoing breach. Read their press release below and then the comments after it. April 13, 2021 /PRNewswire/ — Today, Montefiore Medical Center is notifying some patients about a security breach involving information illegally accessed by a former employee. Categories of personal information accessed varied…
Category: Breach Incidents
Baltimore County Public Schools takes responsibility for data breach that affected teachers
Tim Tooten reports: More than 2,500 of Baltimore County Public School system employees have had their personal information compromised and the district said it’s their fault. It follows a number of technology issues the school system has been dealing with since November. School officials said they learned about the technology failure in January, but letters…
UK: Social worker shared confidential details of someone in care on Facebook
Robert Harries reports: A social worker from Carmarthenshire has admitted sharing information on Facebook that revealed confidential details about someone receiving care, a Social Care Wales hearing has heard. Sharon Rosemary Williams also rolled a cannabis joint in a video posted online when she was employed by Carmarthenshire Council. Miss Williams, who had been registered as a…
FR: Morières-lès-Avignon, Douai, Würth France suffer cyber attacks
Le Dauphiné reports (translated): Like Isle-sur-la-Sorgue, this Friday, hackers also targeted the computer system of the City of Morières-lès-Avignon. A complaint has not yet been filed but the gendarmes of the Avignon company are aware of this malicious act. In the other case, unnamed threat actors had demanded 500,000 euros for the decryption key — the same…
CareFirst BlueCross BlueShield Community Health Plan District of Columbia discloses breach
Maggie Miller and Laura Kelly report: CareFirst BlueCross BlueShield’s Community Health Plan District of Columbia (CHPDC) suffered a data breach carried out by what it described as a “foreign cybercriminal” group in January that potentially impacted sensitive data, the company told customers this week. The insurance provider notified customers in writing through a letter obtained…
Signify Health notifies covered entities’ patients of possible access to their PHI
Signify Health, LLC is a business associate to entities covered under HIPAA. On October 12, 2020, they discovered that an employee had published his login credentials to a subscription-based job board. The employee, described as a low-level IT Support Specialist, was seeking a coding specialist to help him write a job-related script. He would later…