The following is not your typical breach notification. It relates to a situation in which a business associate allegedly refuses to return the patient database despite its EULA and HIPAA obligation. The press release does not indicate whether the covered entity, Key Dental Group, is suing its former vendor to recover the database. Nor does…
Category: U.S.
MO: Woman sues SSM Health over alleged privacy violation
ABC17 reports a follow-up to a breach previously noted on this blog. A Holts Summit woman is suing SSM Health St. Mary’s Hospital after she claims it didn’t do enough to protect the privacy of her medical records. According to the lawsuit filed in Cole County, the patient, referred to as “T.K,” received a letter…
Hacker lifts $1 million in cryptocurrency using San Francisco man’s phone number, prosecutors say
Kate Rooney reports: Losing cellphone service is inconvenient. But in some cases, it also might mean you’re getting hacked. San Francisco resident Robert Ross, a father of two, noticed his phone suddenly lose its signal on Oct. 26. Confused, he went to a nearby Apple store and later contacted his service provider, AT&T. But he…
USPS Site Exposed Data on 60 Million Users
Brian Krebs reports: U.S. Postal Service just fixed a security weakness that allowed anyone who has an account at usps.com to view account details for some 60 million other users, and in some cases to modify account details on their behalf. KrebsOnSecurity was contacted last week by a researcher who discovered the problem, but who asked…
New York Oncology Hematology notifying more than 128,400 employees and patients after phishing attack
Albany-based New York Oncology Hematology is notifying more than 128,400 employees and patients after discovering that 14 employees fell prey to phishing attacks in April. Although forensic invesgtigation did not find any clear evidence that attackers accessed employee or patient data in the employees’ email accounts, NYOH decided to notify everyone. As part of their web…
Family Tree Relief Nursery notifies families of ransomware attack
Some 2,000 clients of Albany-based nonprofit Family Tree Relief Nursery were notified by mail Thursday that unauthorized persons had accessed the organization’s computer programs between June and August. Executive Director Renee Smith said the organization’s computer was hacked by ransomware in late August. The incident briefly prevented staff from accessing client information. […] Smith recommended…