On January 2, 2019, Klamath County notified individuals that their personal information was affected by a Veterans Service Office data security incident. On September 19, 2019, the Klamath County IT Department became aware of unusual activity of one of its Veterans Service Office employee’s email accounts. Klamath County immediately launched an investigation and determined that the Veterans Service Office employee’s email…
Category: U.S.
MI: Hackers demand Richmond Community Schools to pay $10,000 in Bitcoin
Kate Raymond reports: Richmond Community Schools were scheduled to reopen from Winter Break on Thursday January 2, 2020. They had to postpone due to a hacking incident that occurred on their server. Richmond Community School’s IT department noticed the hack had occurred on December 27, 2019. And yes, the district has refused to pay the ransom….
TX: Landry’s notifies customers of payment card data breach
Their press release: Landry’s, Inc. (“Landry’s”) takes the security of payment card data very seriously. Years ago (beginning in 2016), Landry’s installed a payment processing solution that uses end-to-end encryption technology at all Landry’s owned locations. Landry’s is notifying customers of an incident that it recently identified and addressed involving payment cards that, in rare…
CO: Aurora Water announces data breach involving Click2Gov payment system
Author: Janet Oravetz reports: Personal information of some Aurora Water customers, such as names, card numbers and expiration dates, may have been compromised through a data breach, according to the city’s water department. The department made an announcement about the security incident on Monday and said customers who used the Click2Gov payment system to make one-time…
West Georgia Ambulance Company Pays $65,000 to Settle Allegations of Longstanding HIPAA Noncompliance
Are you surprised to see a settlement with HHS arising from an investigation that began when an entity reported a stolen laptop in 2013? Keep reading this notice from HHS to find an explanation: West Georgia Ambulance, Inc. (West Georgia), has agreed to pay $65,000 to the Office for Civil Rights (OCR) at the U.S….
As 2019 draws to a close, some entities are taking harder look at storing PHI in employee email accounts
Okay, so two exemplars doesn’t prove any kind of trend, but I’m glad to see some entities now taking steps to reduce how much PHI is stored in employee email accounts. Here are two recent incidents, both reported to HHS in December: Healthcare Administrative Partners (HAP) is a Pennsylvania-based business associate under HIPAA. On December…