Oren Koriat reports: … Recently, Cynerio has detected an interesting new wrinkle in the sale of stolen medical data on the dark web. Our research team found a post from a vendor on the dark web offering the medical records of the deceased. In this dark web listing, the vendor mentions that 60,000 of the stolen…
Category: Breach Incidents
After Strava, Polar is Revealing the Homes of Soldiers and Spies
Foeke Postma reveals the disastrous situation: Polar, a fitness app, is revealing the homes and lives of people exercising in secretive locations, such as intelligence agencies, military bases and airfields, nuclear weapons storage sites, and embassies around the world, a joint investigation of Bellingcat and Dutch journalism platform De Correspondent reveals. In January Nathan Ruser discovered that…
SystmOne software glitch fouls up opt-out, results in NHS improperly sharing 150,000 patients’ info
BBC reports: The NHS is blaming a coding error for 150,000 patients in England being involved in a data breach. Those affected had requested that their confidential health information only be used to help provide them with care. But it appears that there was a problem with the software used by GPs to record objections…
Homeland Security subpoenas Twitter for an independent researcher’s information
Homeland Security has subpoenaed Twitter for the account information of an independent researcher who has been the source of a number of this site’s reports. Is this just another chapter in the war on independent researchers to try to chill speech? Or is there more to the story that we do not yet know? Zack…
PA: Butler woman faces federal HIPAA indictments
Andrew Carr reports that Linda S. Kalina, 61, of Butler, Pennsylvania was indicted by a federal grand jury Thursday on charges of illegally obtaining and disclosing health information of another person. The records do not appear to be indexed on PACER yet, but according to Carr, Kalina had been employed as a patient information coordinator by the University…
Notre Dame de Namur University notifying financial aid applicants of data security incident
Notre Dame de Namur University is notifying some financial aid applicants that their information may have been compromised when an employee fell prey to a phishing attack. In its notification letter (reproduced below), Henry Roth, the Chief Financial Officer and VP of Administration, writes that the university learned of the possible compromise on May 18. Investigation…