Ryan M. Martin of Winston & Strawn LLP writes: The U.S. District Court for the Southern District of Illinois recently denied the retail grocery chain Schnuck Markets’ motion to dismiss various claims arising from a December 2012 data breach in which hackers gained access to Schnucks’ credit/debit card processing systems. By mid-March 2013, both customers’ banks and Schnucks’…
Category: U.S.
Major Patient Privacy Breach Alleged At Palo Alto VA
Benjamin Krause writes: VA OIG just reported that Palo Alto VA Health Care System unlawfully gave patient data to a private IT company despite employees not having cleared background checks. The watchdog investigated allegations that the Palo Alto VA informatics chief entered into an illegal agreement with a health care company called Kyron. VA OIG confirmed allegations…
Data breach lawsuit against former parent company of Flowers Hospital survives motion to dismiss
There’s a noteworthy update to a lawsuit against Triad of Alabama, the former parent company for Flowers Hospital, whose employee was convicted on both federal and state charges for stealing and trafficking in patient information for tax refund fraud. The breach and earlier developments in the lawsuit were covered on PHIprivacy.net. Today, Lance Griffin reports that the amended class…
NC: High school students charged with hacking into school computers
So simple a child could do it? Fox46 reports: Iredell County, NC – Seven high school students were charged in an Iredell County campus computer breach. On Tuesday, September 1, Iredell Statesville School System reported to the sheriff’s office they has been hacked. The school believed the suspects were students at the school. The ISS IT Department quickly…
Barrington Orthopedic Specialists, Ltd notifies patients after theft of equipment
Barrington Orthopedic Specials, Ltd in Illinois is notifying 1,009 patients following the theft of a laptop with protected health information. From their substitute notice on their web site: Barrington Orthopedic Specialists, Ltd. takes patient privacy very seriously, and it is important to us that you are made fully aware of a potential privacy issue. We have…
Trump International Hotel & Tower Las Vegas notifying customers that malware was present in payment card system for more than one year (UPDATE 1)
Norton Rose Fulbright, a law firm representing The Trump Hotel Collection, is sending out notifications to customers who used a payment card at Trump International Hotel & Tower Las Vegas between May 19, 2014, and June 2, 2015. They write: Although an independent forensic investigation has not conclusively determined that any particular customer’s payment card information was taken…