Anya van Wagtendonk reports: Private medical records that may have included Social Security numbers of more than 4,000 patients at a Grand Haven hospital were improperly accessed by a hospital employee over more than three years. Between May 2016 and Oct. 2019, a hospital employee accessed the records of 4,013 patients at the North Ottawa…
Category: U.S.
Another Click2Gov victim is revealed in Texas
Add Sugarland, Texas to any list you are keeping of Click2Gov breach victims. As with other entities in the second wave of attacks, those residents who used the payment portal to make one-time payments seem to have fallen prey to the attackers. And as with a number of other CentralSquare Technologies Click2Gov customers, Sugarland will…
Unsecured backup devices continue to be a hot mess
After a few years of headlines blaring mega-numbers of records exposed by misconfigured RSYNC backups, we might hope that we would be seeing fewer errors by now. But it seems that RSYNC errors continue at a high rate, exposing massive amounts of data. This month, part of what I did was look at RSYNC errors…
Walla Walla, Wash., University Disrupted by Cyberattack
Sheila Hagar reports: Walla Walla University officials are investigating a campus-wide cyberattack that crashed online networks and phone lines this fall-finals week. School officials today referred to the hacking, discovered Monday, as a ransomware incident but did not confirm a monetary ransom was demanded. Read more on Government Technology.
Minnesota Blue Cross scrambles to boost cyberdefenses
Joe Carlson reports: Blue Cross Blue Shield of Minnesota is working rapidly to shore up its cybersecurity defenses after an internal whistleblower raised alarm that the state’s largest health insurer had long neglected thousands of important updates. Internal documents show that Minnesota Blue Cross allowed 200,000 vulnerabilities classified as “critical” or “severe” to linger for…
AG Josh Shapiro reaches settlement with Expedia and Orbitz in 2018 data breach
Valeria de Leon reports: Attorney General Josh Shapiro announced on Friday, he reached a settlement with two online travel reservation companies after they potentially exposed information of thousands of people, including Pennsylvanians. The settlement follows an investigation led by Deputy Attorney General Timothy R. Murphy, into a data breach in 2018 involving Orbitz and its…