OkHello provides a free group video chat service. Its app is available on the App Store and on Google Play. If you’ve ever used it, your details may be in others’ hands right now. According to their Privacy Policy, OkHello collects a lot of personal information about users, including geolocation data and information from Facebook…
Category: Breach Incidents
NM: Fired by Roadrunner, former employee allegedly took revenge by hacking them and re-routing customer service calls
Kirsten Swanson reports: A Rio Rancho man was arrested for hacking his old employers and posing as a technician, even after police say they charged him with a crime. Gordon Logan is accused of hacking into the servers at Roadrunner Wireless Internet Service. He worked at the company for 16 years. Police started to investigate…
Does the FTC Act require FTC to consider breach mitigation in demonstrating “likely” injury?
Jon Neiditz writes: The day after the LabMD decision, I wrote the post linked here because the whole world appeared to be ignoring the importance of that stunning decision. In the last week, even though hundreds of posts, alerts and articles about LabMD have been written, they and all of the media questions I am struggling now to answer still miss some…
Wait, what??
In January 2015, Ronald D. Garrett-Roe, MD, a physician in Texas, notified HHS that 1,600 patients were affected by a hacking/IT incident involving a desktop computer. At the time, I could find no additional details on the incident, but now we have this somewhat puzzling summary of OCR’s investigation: Alleged hackers gained unauthorized access to one or…
Follow-up: Boston Baskin Cancer improved data security safeguards following breach
Remember the Boston Baskin Cancer Foundation breach involving the theft of a hard drive from an employee’s home? The breach affected almost 57,000 patients and employees. Here’s the summary of OCR’s investigation into the incident: On December 2, 2014, a Boston Baskin Cancer Foundation employee’s laptop computer and external hard drive were stolen. The external hard…
Follow-up to Boyd Hospital breach
Remember the case in Illinois where Boyd Hospital had stored patient records in a building that was later sold as surplus? The hospital claimed it didn’t know the new owner was taking possession of the building, which is why the patient records were still in there when the new owner took possession of the premises….