Maybe we should do this one as a “write your own headline” exercise. Earlier this week, Kromtech Security reported that they had uncovered yet another improperly secured AWS S3 bucket that was exposing protected health information. The company that was responsible for the collection of the home monitoring data, Patient Home Monitoring, was exposing what…
Category: Breach Incidents
No holds barred? TheDarkOverlord threatens students with physical violence to send FBI a message to back off
DataBreaches.net has been reporting on TheDarkOverlord (TDO) since they first burst on the scene in June, 2016. Since then, this site has reported on numerous attacks by them on health care entities, financial and business entities, a Hollywood post-production studio, and a defense contractor. Now they have begun to target the education sector, and an official at the…
Office of the Australian Information Commissioner seeks your comment
Notifiable Data Breaches We are currently seeking public comment on the following draft resources: What to include in an eligible data breach statement Notifiable Data Breach statement Exceptions to notification obligations Guide to OAIC Privacy Regulatory Action – Chapter 9: Data breach incidents Assessing a suspected data breach Please provide any comments by 23 October…
Data breach at Toms River police headquarters
Erik Larsen reports: The township plans to notify about 3,700 people that their personal information may have been compromised by a data breach inside the Police Department over the summer, said Chief Mitch Little. Toms River’s chief of police said his department first discovered a problem on Aug. 2, when its computer assisted dispatch server…
Fresno USD notifies employees of newly discovered breach
It appears that the Fresno Unified School District had a breach involving employee data a few years ago, but only discovered it now. Even now, however, they do not yet seem to know exactly how or when the breach occurred. From their notification letter: On July 5, 2017, Fresno Unified contacted the Gilroy Police Department…
Arkansas Oral & Facial Surgery Center notifies 128,000 patients of ransomware incident
Arkansas Oral & Facial Surgery Center disclosed a ransomware incident that may or may not have resulted in access to protected health information. As they explain in their notice to patients of September 24, 2017: On July 26, 2017, Arkansas Oral & Facial Surgery Center discovered that its computer network had been impacted by ransomware,…