Darren Fishell reports: Malware on a computer at the Brunswick Hotel and Tavern exposed names and credit card information for as many as 2,600 guests who stayed at the hotel between November 2014 and July 2015. The company managing the hotel notified customers of the breach in a letter dated Aug. 21 and posted to…
Category: U.S.
Cancer Care Group settles HHS charges over “widespread noncompliance” with HIPAA Security Rule; $750,000 fine and corrective action plan
In August 2012, I noted a breach involving the theft of backup media from an unattended vehicle of a Cancer Care Group employee. The backup contained information on 55,000 patients and employees. Now, more than three years later, HHS has announced a settlement with CCG over the breach. As seems to be their style, they…
Meanwhile, back at the OPM breach….
Victims of the breach still have not been notified. OPM will start sending postal laters “later this month.” The government will spend $133 million on identity theft protection services. With options, it could go up to $330 million. ID Experts (Identity Theft Guard Solutions LLC) got the gig to provide the service, which will provide…
Backblaze Faces Class Action Over Unencrypted Hard Drives
Tamara Burns reports: Backblaze Inc., a company specializing in computer data backup and recovery, is the subject of a proposed class action lawsuit filed last Friday. The class action lawsuit alleges Backblaze puts private customer data at risk by shipping them unencrypted external storage drives. [….] Plaintiff Scott Hellervik takes issue with Backblaze’s procedures for…
IL: Village Pizza & Pub notifies customers of data security breach at TransformPOS
I wonder how many other TransformPOS clients may be notifying customers. So far, I do not see any notice on TransformPOS’s web site about this incident. From Village Pizza & Pub’s press release: On July 27, 2015, Village Pizza & Pub learned that the company that provides its point-of-sale payment card processing system, TransformPOS, had been…
IRS Workers Busted for ID Theft, Filing Bogus Returns
Ken Berry, J.D. writes: Who can you trust with sensitive personal information like your Social Security number (SSN) and tax return data? Evidently, not even the people who used to work at the IRS. In a new case, a former IRS employee was sentenced on August 26 to two years in prison in connection with…