Helen Whitehouse reports: Confidential documents detailing the backgrounds of hundreds of people have gone missing following an office upgrade blunder. Bungling Contractors threw out a locked filing cabinet containing up to 500 Disclosure and Barring Service (DBS) certificates for people who had applied to become registered managers and providers. The error, which happened during the…
Category: Breach Incidents
HHS seeks threat information sharing system for health sector
Amanda Ziadeh reports: The Department of Health and Human Services is looking to strengthen the privacy and security of health care information by sharing cyber threat data with partner agencies and stakeholders. HHS’ Office of the National Coordinator for Health Information Technology and the Assistant Secretary for Preparedness and Response released funding opportunities for an…
Clinton campaign says data program accessed in cyber-attack on Democrats
Sam Thielman and Lauren Gambino report: A data program used by the campaign of the Democratic presidential candidate, Hillary Clinton, was “accessed” as a part of hack on the Democratic National Committee (DNC) that intelligence officials believe was carried out by Russia’s intelligence services, Clinton’s campaign said on Friday. […] Clinton spokesman Nick Merrill said…
Pregnancy-tracking app was riddled with vulnerabilities, exposing extremely sensitive personal information
Cory Doctorow reports: Consumer Reports Labs tested Glow, a very popular menstrual cycle/fertility-tracking app, and found that the app’s designers had made a number of fundamental errors in the security and privacy design of the app, which would make it easy for stalkers or griefers to take over the app, change users’ passwords, spy on…
MS: Jefferson Medical Associates notifies patients of new and old breaches
Quentis Jones reports that Jefferson Medical Associates has issued a warning to a small group of their patients after a recent data breach of their systems. According to the release, on June 1 an unauthorized individual not affiliated with JMA accessed a database containing a limited history of prescriptions and other information for a small…
Unauthorized employee accessed AnMed Health patient records, release says
Carla Field reports: A health care revenue company says one of its employees looked at nearly two dozen patient records without authorization. Cardon Outreach does contract work for AnMed Health, and has employees on site at the hospital. AnMed said in a release that a Cardon Outreach employee opened 22 patient files without authorization, including…