Seen on Twitter. This is brilliant :))) Apparently Shawn is the HR boss. pic.twitter.com/N45GxdtwOa — Mladen Prajdic (@MladenPrajdic) April 11, 2019 [The image shows a “Password Change Sign Up Sheet” where employees can list their current password and the one they’d like it changed to. After a few employees signed up publicly that way, there’s…
Category: Breach Incidents
WA: RS Medical notifies patients because an attacker potentially had access to their information
On April 7, RS Medical disclosed an incident that had the potential to compromise patient information. A copy of the notification from the Vancouver, Washington entity, obtained by DataBreaches.net, indicates that the attacker may not have been particularly interested in patient information, though: The primary purpose of the breach, as determined by internal investigation, was…
How long should it take to issue a breach notification?
Attorney Matt Fisher writes: Notice of a new data breach is posted at least once a day. A frequent feature of many notices is the disclosure that the conduct giving rise to the breach happened months earlier, with the delay sometimes going into years in some instances. The notices typically do not provide much insight…
Questcare Medical Services notifies North Texas patients of data security breach
Here’s a breach description that sounds a lot like the one I just posted from Dakota County, MN. Questcare Medical Services announced Friday that it is addressing a security incident that involved the personal information of patients in the Dallas/Fort Worth/Arlington area. Questcare said in a statement that it has begun an internal investigation, notified…
MN: Dakota County Notifies 1,000 Clients After Employee Email Account Hacked
HASTINGS, Minn., April 12, 2019 /PRNewswire/ –Dakota County has become aware of a data security incident that involved protected health information maintained by the Dakota County Social Services Department. Dakota County has sent notification letters to the potentially impacted individuals to notify them of this incident and to provide resources to assist them. On February…
Patients at an Ohio rehab hospital were notified of breach. Was that breach part of a coordinated attack on Ernest Health hospitals?
Lauren Lindstrom reports: An undisclosed number of patients at the Rehabilitation Hospital of Northwest Ohio had their personal data compromised after “unauthorized access” to employee email accounts in October, hospital officials said. Patient data, including names, Social Security numbers, driver’s license information, dates of birth, and health insurance and patient care information, was contained in…