There are a number of unanswered questions about an incident disclosed by RoxSan Pharmacy today. See what you think, starting with their press release of today: As part of its commitment to patient privacy, RoxSan Pharmacy (“RoxSan”) notified 1,049 patients of a potential breach of unsecured personal patient protected health information. RoxSan is notifying affected…
Category: Exposure
The strange case of the data breach that stayed online for a month
So the headline’s a bit of clickbait as there’s nothing really strange going on, but it’s still a useful reminder situation….. Simon Sharwood and Kat Hall report on a case where someone found a spread sheet exposed/indexed by Google. And although the company believed that they had gotten everything removed, weeks later it was still…
KY: Livingston County Schools teachers, staff fear identity theft
Blake Stevens and Randall Barnes report: Many teachers, bus drivers, custodians, and other school staff in Livingston County fear their identities may have been stolen. Superintendent Victor Zimmerman apologized Monday night for unknowingly posting payroll information with social security numbers on the Livingston County school district’s website. The breach was part of an attachment for…
Sued by Aetna over botched mail notifications, KCC fires back, suing Aetna
“I sue you, You sue me, We both sue too easily. Too easily to let it show. I sue you and that’s all I know.” — wrote Art Garfunkel never. Alison Frankel reports: A day after Aetna sued the claims administrator Kurtzman Carson Consultants for exposing confidential medical information about Aetna clients in a settlement…
NC: Thomasville employees’ SSN accidentally released in public records request screw-up
Here we go again. Another public records request where someone sent out records without proper redaction. This time, it’s nearly 270 employees of the city of Thomasville who had their SSN disclosed improperly and then uploaded to Facebook. The city will give them credit monitoring. FOX8 has the story.
Shoot the messenger, Thursday edition: Botched ICO leaks users’ passport data, calls police on guy who found the bug
MIX reports: Fledgling cryptocurrency startup Sentinel Chain, which promised to “unlock the economic potential” of the poor, launched its initial coin offering (ICO) earlier this week, but it missed one thing: a critical vulnerability that made it possible to scrape its users’ personal data, including their emails and passport images. Shortly after kicking off its…