If I knew emojis, I’d include one for “highly skeptical” to accompany this story. Ellen Nakashima reports: The Chinese government recently arrested a handful of hackers it says were connected to the breach of Office of Personnel Management’s database earlier this year, a mammoth break-in that exposed the records of more than 22 million current…
Category: U.S.
University of Rochester Medical Center settles NYS Attorney General charges stemming from HIPAA breach
Back in May, I noted that University of Rochester Medical Center was notifying 3,000 patients because a departing employee had taken patient information with her for her new employer to use to recruit patients. Now NYS Attorney General Schneiderman has announced a settlement with URMC over the HIPAA breach. The settlement requires the center to pay a $15,000…
State law claims in Anthem breach tossed because ERISA pre-empts
And yet another blow to would-be plaintiffs in data breach litigation: you can’t raise claims under state law if ERISA applies and covers all the claims. Joe Lustig reports: For the second time this year, the U.S. District Court for the Northern District of California has ruled that state law claims arising from Anthem’s February data…
OH: Thousands Of Medical Records Containing Confidential Info Found In Dumpster
Maureen Kocot reports: A good Samaritan says he was surprised when he discovered thousands of documents marked confidential in a dumpster. 10TV examined the documents and found medical records containing patients’ social security numbers, dates of birth, as well as detailed information about medical conditions and prescriptions. […] The Ohio Medical Board says it has…
Home Depot reaches settlement agreement with MasterCard over data breach
David Allison reports: The Home Depot Inc. (NYSE: HD) has reached a contingent settlement with MasterCard International Inc. over the home improvement giant’s massive 2014 data breach. The deal was disclosed Nov. 30 in court filings in federal court in Atlanta. Banks have reached out to see if their members are interested in participating in…
IL: Mailing error by contractor discloses ‘limited’ personal info of 3,000 Centegra patients
Stephen DiBenedetto reports: Medical bills detailing “limited” personal information of 3,000 Centegra Health System patients recently were sent to the wrong addresses because of a mailroom error at a third-party contractor, a Centegra spokeswoman said. The mailing error happened Nov. 2 at MedAssets, a Georgia-based vendor Centegra contracts, during routine maintenance. A setting on automatic…