Tony Redmond reports: The danger of making mistakes when changing cloud systems that run at massive scale was demonstrated on Thursday evening (August 3) when the Office 365 Admin Center suddenly started to reveal usage data belonging to other tenants. Reports flooded in from administrators who noticed that the reported email and SharePoint usage for…
Category: U.S.
OH: UC Health hospital notifies patients of medical records being compromised
Barrett J. Brunsman reports: The Daniel Drake Center for Post-Acute Care, a hospital affiliated with UC Health, has begun notifying thousands of patients that some of their medical records might have been compromised Drake hospital began mailing letters to 4,721 affected patients on Aug. 1 and has established a call center to address questions. Each…
Personal Info of 650,000 Voters Discovered on Poll Machine Sold on Ebay
Kevin Collier reports: When 650 thousand Tennesseans voted in the Memphis area, they probably didn’t expect their personal information would eventually be picked apart at a hacker conference at Caesars Palace Las Vegas. […] But hackers given access to an ExpressPoll-5000 electronic poll book—the kind of device used to check in voters on Election Day—have…
NY: Kaleida Health notifies 2,789 patients about phishing incident
Notification to Our Patients of Phishing Incident Kaleida Health is committed to maintaining the privacy and security of our patients’ information. Regrettably, this notice is to inform you of an incident involving some of that information. On May 24, 2017, we learned that an unauthorized third party potentially accessed a Kaleida Health employee’s email account….
FL: PBSO deputy gets 5 years in prison in ID theft case
CBS12 reports on a case I’ve been updating on this site for the past few years: A Palm Beach County Sheriff‘s deputy received five years in prison after pleading guilty in an identity theft case. In March, Deputy Frantz Felisma pleaded guilty to federal charges of aggravated identity theft and access device fraud. He admitted to…
Northwest Rheumatology of Tucson Notifies Patients of Potential Data Security Incident
Sometimes you think your PHI have escaped a ransomware attack…. but they may not have as this notification from Northwest Rheumatology reminds us. On April 10, 2017, Northwest Rheumatology (“NW Rheumatology”) experienced a ransomware incident which left a limited portion of its computer system encrypted and inaccessible. NW Rheumatology immediately contacted its computer security vendor…