Matt O’Brien reports: A data breach at department store chains Saks Fifth Avenue, Saks Off Fifth and Lord & Taylor has compromised the personal information of customers who shopped at the stores. The chains’ parent company, Canada-based Hudson’s Bay Co., announced the breach of its store payment systems on Sunday. The company said it was…
Category: U.S.
Web Developer Accused Of Stealing Data, Computer Tampering
Michael Woyton reports on a case in New Rochelle, New York: A web developer was arrested in New Rochelle for using his former employer’s data and computer servers to set up his own business. Westchester County District Attorney Anthony A. Scarpino Jr. said Friday that Nial Yusupov, 25, of New Rochelle was arraigned March 28…
MA: Cambridge Health Alliance notifying patients after law enforcement alerts them to stolen data
They say that they’re not yet sure how a breach involving patient data happened, but Cambridge Health Alliance in Massachusetts was notified by the police that three electronic patient files had been found in possession of an unauthorized party. CHA learned of the breach on January 31, and opened their own investigation, which revealed that…
CareFirst phishing attack could affect 6,800 members
Morgan Eichensehr reports: CareFirst BlueCross BlueShield, Maryland’s largest health insurer, has been the victim of a “phishing” email attack that potentially affected 6,800 of its members. This breach comes about three years after CareFirst weathered another cyberattack that affected more than 1 million of its members. The Baltimore company has 75 percent market share in the…
NY: Arc of Erie County exposed client info for more than 2 years due to coding error
March 9, 2018 The Arc Erie County New York (The Arc) was recently made aware that certain information contained on two spreadsheets stored on its database was publicly available on the internet between approximately July 2015 and February 15, 2018 due to a problem with a link on The Arc’s website. This issue appears to…
NY: Middletown Medical dealing with data breach
Daniel Axelrod reports: Middletown Medical recently discovered the practice’s staff may have accidentally disclosed an unspecified amount of its patients’ personal health information in January, the provider announced Thursday. “On January 29, 2018, we learned that the security setting on a Middletown Medical radiology interface may have permitted users to see a patient listing and,…