Scott Taylor reports: A nurse tells 7 On Your Side and Call For Action she was horrified to discover a government web site exposed her name, address and social security number to others… and could have done the same to 600 other nurses. Nurses just like Alexia Park can log onto the DC Department of…
Category: U.S.
Identities of thousands of Tennesseans with HIV made vulnerable by government error
Bret Kelman reports: For nine months, the confidential data just sat there, where hundreds of employees could reach it. The identities of thousands of Tennesseans with HIV or AIDS, both living and dead, were listed in a computer database kept on a server accessible to the entire staff of the Nashville Metro Public Health Department. But…
DOJ backtracks on linking OPM hack to loan fraud case
From the not-surprised dept.: I had suggested previously that claims that data used in identity theft came from the OPM hack were not very convincing. Now the government has walked back any claim that the data did come from the OPM hack. Mark Rockwell reports: The Justice Department said it jumped the gun with a…
Follow-Up: MedEvolve provides notice of leaky FTP server
On May 16, DataBreaches.net reported on a breach involving MedEvolve. The breach had been reported to this site by an independent researcher, who had found that some of MedEvolve’s clients’ patient information was exposed on a public FTP server with no login required. The MedEvolve incident was included in the May statistics compiled for Protenus’s…
MO: Cass Regional responds to ransomware attack
A special statement from Cass Regional HOSPITAL NEWS | MONDAY, JULY 9, 2018 At approximately 11 a.m. this morning, Cass Regional Medical Center became aware of a ransomware attack on its information technology infrastructure. Affected areas include internal communication systems and access to the organization’s electronic health record (EHR). At this time, there is no…
MSK Group notifying patients of data security incident
MSK Group in Tennessee, and its divisions, OrthoMemphis, Memphis Orthopaedic Group, Tabor Orthopedics, and Crosstown Back & Pain Institute, are notifying patients of a data security incident that they discovered on May 7. In a notification letter dated July 5 and signed by Kimble L. Jenkins, CEO, the orthopedic group offered those affected free services with…