Another day, another leak. It appears a security researcher who searches for leaks on public FTP servers has uncovered another leak involving personal information. This time, it’s the personal information of 11,771 individuals who applied to the State of Nevada Medical Marijuana Program to become an agent for a medical marijuana establishment (MME). The researcher…
Category: Breach Incidents
The Worst Health Data Breaches in 2016
It’s relatively easy to identify which were the biggest breaches involving health data that were disclosed in 2016, but which of the hundreds of breaches disclosed were the worst ones if you look beyond the numbers? As in past years, we learned of devices with sensitive unencrypted health information being stolen from vehicles, paper records were found where they…
NJ: Insurance agent allegedly stole clients’ identities to commit fraud
Dave Hutchinson reports: A former Union County insurance agent has been accused of receiving more than $6,000 in illegal commissions by stealing the identities of former clients and fraudulently applying for new life insurance policies with another company, Attorney General Christopher S. Porrino said Friday in a news release. […l After leaving American Income and…
Bulgarian man pleads not guilty in malware scheme
AP reports: A Bulgarian man has pleaded not guilty to federal charges in Pennsylvania that he used sophisticated malware designed to steal banking credentials and other confidential information from infected computers. The U.S. Attorney’s Office alleges that 44-year-old Krasimir Nikolov of Varna, Bulgaria, gained access to victims’ online bank accounts and transferred funds or tried…
GA: Forsyth County investigates information breach
Mark Woolsey reports: A security breach at the Forsyth County Tax Commissioners office led to the inadvertent release Social Security numbers of nearly 20,000 residents. Tax commissioner Matthew Ledbetter said in a letter to those impacted that the information was mistakenly included in a data file downloaded by two outside parties. Both had authorized access…
Fairbanks Hospital notifies patients after discovering employees could have been inappropriately accessing patient records for years (UPDATED)
Fairbanks Hospital in Indianapolis is notifying an undisclosed number of patients that employees could have been accessing protected health information of patients since at least November 2013 (and possibly earlier). The information that was accessed included current and former patients’ social security numbers, contact information, diagnosis, treatment and health insurance. In a notification dated December 16, the hospital…