The Center for Orthopaedic Specialists (COS) in California has three locations in West Hills, Simi Valley and Westlake Village. COS has been notifying 85,000 current and former patients of a ransomware attack on their unnamed IT vendor in February. From their April 18 notice on their web site: The Center for Orthopaedic Specialists (COS) recently learned…
Category: U.S.
Access Group notifies borrowers of data security incident
It’s not just edtech vendors students need to watch out for when it comes to privacy and data security. Vendors that help process student loans may also put you at risk, as this notification from AccessLex Institute (dba Access Group) reminds us. The nonprofit organization, which provides financial education resources and services, writes: Dear [Name]:…
Altaba, Formerly Known as Yahoo!, Charged With Failing to Disclose Massive Cybersecurity Breach; Agrees To Pay $35 Million
From the SEC: The Securities and Exchange Commission today announced that the entity formerly known as Yahoo! Inc. has agreed to pay a $35 million penalty to settle charges that it misled investors by failing to disclose one of the world’s largest data breaches in which hackers stole personal data relating to hundreds of millions…
Data breach could impact some patients of medical lab chain with Alabama locations
Connor Sheets reports: A data breach may have resulted in the exposure of the personal and protected health information of patients of a medical lab chain with multiple Alabama locations. American Esoteric Laboratories announced Friday that it had become aware of a “data security incident” that could impact patients’ data security. An AEL employees’ company-issued laptop was…
Atlanta spent at least $2.6 million on ransomware recovery
Zack Whittaker reports: Atlanta spent more than $2.6 million on recovery efforts stemming from a ransomware attack, which crippled a sizable part of the city’s online services. The city was hit by the notorious SamSam ransomware, which exploits a deserialization vulnerability in Java-based servers. The ransom was set at around $55,000 worth of bitcoin, a…
Former gynecologist set to stand trial for patient privacy violations, lying to federal agents
Stephanie Barry reports on a case that I don’t recall ever hearing about before: Jury selection will begin this morning in the trial of Rita Luthra, a former gynecologist accused of violating patient confidentiality laws, witness tampering and lying to federal investigators. The case against Luthra, of Longmeadow, is a significantly watered-down version of the…