Nowadays, you are more likely to first learn of breaches on Twitter than from the entity’s site or email, as this thread today from Hack The Box demonstrates: Dear users – we apologise unreservedly for the recent disclosure of email addresses. A statement will follow shortly regarding the cause, impact, and preventative measures that we’ll…
Category: Breach Incidents
Fresenius Medical Care North America settles HHS OCR complaint for $3.5m plus corrective action plan
Fresenius Medical Care North America (FMCNA) has agreed to pay $3.5 million to the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR), and to adopt a comprehensive corrective action plan, in order to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules. FMCNA…
MO: Licensed Professional Counselor Pleads Guilty to $175,000 Medicaid Fraud Scheme
A DOJ press release, but unfortunately, it doesn’t reveal for whom the defendant was working when she misused patient information. Was she self-employed or an employee of another entity? Jefferson City, Mo. – Missouri Attorney General Josh Hawley announced that Corrine A. Dale, of St. Louis, entered an open plea in St. Louis County Circuit Court…
San Diego County Office of Education notifies component school districts of breach of employee retirement contribution data
The San Diego County Office of Education recently notified component districts that some employee retirement contribution data had been incorrectly shared with districts. From their notification: What Happened? On December 5, 2017, a San Diego County Office of Education (“SDCOE”) employee inadvertently sent an employee retirement contribution spreadsheet, containing employee name, Social Security number, and funding…
Paradise Papers firm tries to prevent further releases of data
Ian Health reports that Appleby, a firm at the centre of the Paradise Papers data leak, has hired a high-profile media lawyer to help block further releases of confidential client data. Health reports: Appleby have maintained that the documents were illegally hacked from their files and have since initiated legal proceedings against the BBC and…
Health Data Breaches in 2017: The Year in Review
Protenus, Inc. has released its 2017 review of breaches involving health data. It is the second annual review they have published since we began collaborating on data collection and analyses. As a reminder of last year’s major findings: Protenus reported that in 2016, insider incidents constituted approximately 43% of the 450 incidents we had compiled…