Category: U.S.

Anthem Fires Back at Data Breach Suit

Posted on by Dissent

Ross Todd reports: Anthem Inc., the nation’s second largest health insurer, has taken its first swing at narrowing litigation stemming from a major data breach affecting about 80 million customers. In court papers filed Monday, Anthem’s lawyers at Hogan Lovells maintain that customers have failed to show any actual damages as a result of the…

Read more

Lahey Clinic Hospital settles OCR charges stemming from theft of laptop used with CT scanner

Posted on by Dissent

Hot off the presses: there’s been another settlement announced by OCR. This one involves Lahey Hospital and Medical Center (Lahey Clinic Hospital), who have agreed to pay $850,000 and to adopt a robust corrective action plan to correct deficiencies in its HIPAA compliance program. Lahey is a nonprofit teaching hospital affiliated with Tufts Medical School, providing primary…

Read more

OPM OIG Audit Finds Significant Problems Remain

Posted on by Dissent

From the Executive Summary of FY 2015 FISMA Results:   The significant deficiency related to information security governance has been dropped due to the reorganization of the Office of the Chief Information Officer (OCIO).   OPM’s system development life cycle policy is not enforced for all system development projects.   OPM does not maintain a…

Read more

Personal data of thousands of Jefferson Co. residents exists online

Posted on by Dissent

Eric Besson reports: As public anxiety persists over regular reports of major data breaches, Social Security numbers of up to thousands of current and former Jefferson County residents can be found online in electronic county records, increasing locals’ vulnerability to a costly and stressful ordeal. The issue lingers from an unresolved statewide privacy gap spotted almost a…

Read more