Inova Health has been notifying patients of a breach that law enforcement first alerted them to on September 5. According to a notice on the Northern Virginia – Washington, D.C. – metro area health system’s site: On September 5, 2018, we were advised by law enforcement that some of our patient records may have been…
Category: Breach Incidents
Sugar City recall petition delayed by county malware attack
Lisa Dayley Smith reports: The Old Farm Estates controversy took another turn after the petition organizer to recall the mayor and a councilman complained the city was slow in forwarding the petition to county workers. City officials countered that a malware attack at the county blocked or slowed down email concerning the recall. Read more…
Names of recreational cannabis buyers hacked
Antonella Artuso reports: The privacy of 4,500 Ontario Cannabis Store customers was breached through what the online retailer says was a weakness in Canada Post’s tracking website, the Toronto Sun has learned. The information obtained was the buyer’s name or initials, postal code, date of cannabis delivery, the Canada Post tracking number and OCS’ corporate…
Protenus releases its Q3 report on breaches involving health data
Protenus has released its Q3 report on breaches involving health data. As explained in their methodology, since its inception in 2016, Protenus reports have not confined themselves to just using data from HHS’s public breach tool (“The Wall of Shame”). Instead, the Protenus reports, using data compiled by DataBreaches.net, include data from incidents also involving…
HSBC Bank notifies customers after hacking incident (updated)
On November 2, HSBC sent letters to an undisclosed number of customers concerning a breach of their accounts. A template of the letter was submitted to the California Attorney General’s Office. It states, in part: HSBC became aware of online accounts being accessed by unauthorized users between October 4, 2018 and October 14, 2018. When…
Bowker Investigating Breach of ISBN Site
Jim Milliot reports: In a notice posted on its website late last week, R.R. Bowker said it has learned that unauthorized charges were being made on its www.myidentifiers.com website, which is responsible for issuing ISBNs. The company said its preliminary investigation has found that the breach appears to have happened over the course of multiple…