It’s been a while since I’ve noticed a third-party breach of a wellness vendor, but here we go, it seems. SimplyWell (“Viverae”) works with Healthbreak, who provides wellness services to the firm in question. SimplyWell, Inc. (“SimplyWell”) recently discovered a data privacy incident that may affect the privacy of certain Lincoln Electric System (“LES”) employees’…
Category: U.S.
Data Leak May Have Affected Patients at Muir Medical Group IPA
NBC reports: Muir Medical Group patients who received treatment between November 2013 and February 2017 may have had their personal information shared without their consent, the company reported. The Walnut Creek-based firm discovered the leak on March 7 after a former employee took information with her before her employment ended, according to the company. This…
University of Toledo alerts some faculty, students of lost flash drive
Lauren Lindstrom reports: A lost flash drive containing the names and Social Security numbers of an undisclosed number of people associated with the University of Toledo prompted the university to send out letters alerting those affected by the “security incident.” A UT faculty member lost an unencrypted flash drive containing personal information belonging to some…
NY: 2,690 University of Buffalo logins stolen in data breach (updated)
Benjamin Blanchet reports: Thousands of UB community members’ account information have been hacked. On Friday, UB confirmed that J. Brice Bible, vice president and chief information officer, is investigating and responding to a breach of 2,690 UBITName accounts. The breach affects 1,800 student accounts, 862 alumni accounts and 28 faculty and staff accounts, according to…
EPIC to DC Circuit: Informational Privacy is a Constitutional Right
From EPIC: EPIC has filed a “friend of the court” brief, joined by forty-four technical experts and legal scholars (members of the EPIC Advisory Board), in the OPM Data Breachcase. The case concerns the data breach at the US Office of Personnel and Management in 2015 that affected 22 million federal employees, their friends, and…
Vengeful DDoSer who used DDoS-for-hire services sentenced to 15 years
Update: I think my headline mislead my readers – sorry: he was also convicted of being a felon in possession of a firearm. I’m not sure how many years he got for each of the charges. May 17 – A New Mexico man was sentenced today in St. Paul, Minnesota, for directing computer attacks against…