Back in February, 2015, this site noted that vegan makeup company Lime Crime had reportedly been hacked, and that some customers were voicing their displeasure over the firm’s security and lack of responsiveness when problems had been noted. Not surprisingly, then, some customers filed suit over the data breach. And also not surprisingly, neither the…
Category: U.S.
Encryption protected Golden Optometric patients’ EHR from CrySiS attack
It’s nice to read a notification where an entity had good defenses in place. Consider this notification from Golden Optometric in California: Early on the morning of November 6, 2017, the network server at Golden Optometric was infected with a variant of the “CrySiS” ransomware virus, which encrypted a limited number of files on its…
Banks Find (Some) Success Suing Over Data Breaches
Donna Wilson of Manatt, Phelps & Phillips, LLP writes: Banks continue to file suit against retailers, hoping to shift the costs of data breaches, with some recent success. What happened In January 2016, hackers accessed Eddie Bauer’s point-of-sale register system and installed malicious software that infected every Eddie Bauer store in the United States and…
MidMichigan notifies patients of potential breach
The Alpena News reports: MidMichigan Medical Center-Alpena notified approximately 1,900 patients last week about a potential breach of personal data, according to a press release. The information may have included patient names, addresses, social-security numbers and clinical data. The incident that gave rise to the medical center’s investigation occurred during the late evening hours of…
Attackers claim to have hacked MEDHOST (UPDATED)
Update of Dec. 23: As of this evening, the hacker has not responded to a request from this site that they provide proof of access to PHI. And according to a MedHost spokesperson, they will not be reporting this incident to HHS because no PHI was accessed. Under the circumstances, unless more emerges, DataBreaches.net is…
Chilton Medical Center hard drive containing protected health information was sold online
News12 NJ reports: Nearly 10 years of personal hospital records could be at risk after it was discovered that a former employee sold a hard drive containing the information online. The incident could affect patients at Chilton Medical Center in Pequannock who visited the hospital from May 1, 2008 through Oct. 15, 2017. The hard…