A grand jury in the Southern District of New York indicted seven Iranian individuals who were employed by two Iran-based computer companies, ITSecTeam (ITSEC) and Mersad Company (MERSAD), that performed work on behalf of the Iranian Government, including the Islamic Revolutionary Guard Corps, on computer hacking charges related to their involvement in an extensive campaign…
Category: Breach Incidents
NY: Treasure trove of Grand Street Medical Associates patient data exposed and indexed
Grand Street Medical Associates is a multi-disciplinary practice in Kingston, New York. At some point, what appears to be a vast amount of their patients’ protected health information was left exposed on an unsecured FTP server. The leak was discovered by a security researcher, who notified GSMA and then contacted DataBreaches.net on March 12. According…
Missing mental health assessments result in HIPAA notifications by VA to 373 veterans
I was skimming the Veterans Administration report to Congress on data breaches and incidents for February and thinking, “Hey, this looks pretty good this month,” and then…. I saw an incident involving the VA Midwest Health Care Network in St. Cloud, Minnesota. On February 9, a staff member conducted group meetings to complete a paper packet with…
NZ: Privacy review at Wellington Hospital after staffer caught snooping on records
Back in December, I noted an alleged breach at Wellington Hospital that was being investigated, but the name of the employee wasn’t provided, so it’s not clear whether that report is related to a new report out today by Ben Weather: A Wellington Hospital staff member has left after being caught accessing 33 patients’ records….
NH: Scholarship foundation warns of possible computer breach
Dan Seufert reports: A regional scholarship foundation that gives $300,000 in scholarships each year has notified past applicants that their names, addresses and Social Security numbers may have been stolen. The Lakes Region Scholarship Foundation sent notices to former Lakes Region high school students who had applied for scholarships between 1996 and 2009 saying that…
BitQuick Shuts Down After Security Breach; Seeks New Management (updated)
From EconoTimes: BitQuick, a leading P2P trading platform, recently announced that it shut down its server following an attack that gave the attacker unauthorized administrative access. However, all funds, IDs and emails remain secured. “The breach was immediately noticed, and the server was shutdown to prevent any further damage. We are still performing a formal…