Can OPM do anything right? In this week’s installment of their totally infuriating breach and breach response saga, it appears that they didn’t follow proper procedures in awarding a contract for ID theft monitoring services for breach victims. Jack Moore reports: The inspector general of the Office of Personnel Management says a $20 million sole-source…
Category: U.S.
Massive Hack of 70 Million Prisoner Phone Calls Indicates Violations of Attorney-Client Privilege
Jordan Smith and Micah Lee report: An enormous cache of phone records obtained by The Intercept reveals a major breach of security at Securus Technologies, a leading provider of phone services inside the nation’s prisons and jails. The materials — leaked via SecureDrop by an anonymous hacker who believes that Securus is violating the constitutional rights of inmates — comprise over…
TX: Employee with “retaliatory agenda” stole potentially 16,000 children’s medical records
HIPAA Journal reports: An investigation conducted by Children’s Medical Clinics of East Texas has revealed a former employee took copies of children’s medical records and disclosed them to a third party. According to the breach report posted on the healthcare provider’s website, the privacy breach was caused by an individual with “a retaliatory agenda against…
U. of Cincinnati Medical Center not liable for employee’s Facebook post on a patient’s STD (updated)
Kevin Grasha has an update on a breach previously noted on this site. University of Cincinnati Medical Center can’t be sued after an employee leaked private medical records about a patient who had syphilis, a judge ruled Monday. The patient, a woman in her early 20s, filed the lawsuit last year. A screen shot of the…
Indictment in Atlanta charges three in E*TRADE, Scottrade ID theft and fraud scheme
Related to the big news out of Southern District of New York earlier today about the mega-hacking and fraud scheme that allegedly impacted financial institutions, stock prices, and online gambling casinos, another indictment was unsealed in Atlanta against two of the defendants: Three people were charged in an indictment unsealed Tuesday in Atlanta with an…
Experian Posts $20M Charge Related to T-Mobile Data Breach
Diana Goovaerts reports: In its earnings report for the six months ended September 30, 2015, Experian posted a charge of $20 million stemming from its response to an October security breach that exposed the data of millions of T-Mobile customers. According to the report, the “one-off costs” came from Experian’s response to the hack, which included notifying impacted individuals,…