Ouch. This isn’t a W-2 phishing attack, but in some ways, it seems even worse. Carmel Unified School District notified employees that a successful phishing attack had gained access to an employee’s email account that had “a limited number of documents.” Those documents may have contained employees’ or dependents’ information: Employee social security numbers Spouses’…
Category: U.S.
Thousands of Arizonans hit in Medicaid agency’s data breach
Jessica Suerth reports: Thousands of Arizonans were affected by a data breach earlier this year that targeted the state’s Medicaid agency, it was announced Monday. The breach of the Arizona Health Care Cost Containment System affected more than 3,100 individuals when their IRS 1095-B forms were delivered to the wrong addresses. Read more on KTAR.
Another business associate breach, another gap to notification of patients
So here’s yet another breach with what seems like a long delay to notification. In this case, Re-Solutions, a division of RSC Insurance Brokerage in Massachusetts, is a business associate to healthcare providers. On August 23, 2018, an employee’s laptop was stolen. In its disclosure letter, the laptop was described as “password-protected,” but there was…
Hundreds of immigrant recruits risk ‘death sentence’ after Army bungles data, lawmaker says
Today’s reminder that some “human error” breaches can put lives at risk. Alex Horton reports: Army officials inadvertently disclosed sensitive information about hundreds of immigrant recruits from nations such as China and Russia, in a breach that could aid hostile governments in persecuting them or their families, a lawmaker and former U.S. officials said. A…
MA: Release of employees’ partial Social Security numbers troubles Worcester teachers, School Committee members
Scott O’Connell reports: Teachers and School Committee members are looking for answers from the School Department in the wake of the district’s release of personal information for thousands of school employees to a testing company last year. According to Worcester Superintendent Maureen Binienda, the district’s IT department opted to use the last four digits of…
MA: Emerson Hospital reports data breach
Robert Mills reports, in relevant part: Emerson Hospital is offering a two-year membership to an identity protection service to 6,300 patients whose personal information was part of a data breach caused by a third-party vendor last year. In a statement released Friday, the hospital said the data breach occurred between May 9 and May 17…