The other day, I wondered aloud whether there was anything the American Medical Collection Agency (Retrieval Masters) could have done after they were hacked to keep their big clients like Quest Diagnostics and LabCorp. An interesting report by Marianne Kolbasuk McGee on BankInfoSecurity suggests that there might have been. McGee reports that newly submitted court…
Category: Commentaries and Analyses
PA: Software firm, health care provider accuse each other of theft
Nicholas Malfitano reports on a lawsuit in which a healthcare provider, Post Acute Medical, LLC (PAM), accuses the former owner and operator of its computerized records database, Christopher LeBlanc and Meridian Hospital Systems Corporation of Dallas, Texas, of illegally retaining its confidential patient data. The suit was filed in federal court for the Middle District…
Lenovo Confirms 36TB Data Leak Security Vulnerability
Davey Winder reports: Lenovo has confirmed that a “high severity” security vulnerability has left users of specific network-attached storage devices with data exposed to anyone who went looking for it. How much data? How does at least 36TB grab you? That’s the number that the security researchers who uncovered the vulnerability in the Lenovo-EMC storage…
Cyberattacks like Coventry intrusion inflict deep harm at schools
Michael Melia of AP reports: Over six weeks, the vandals kept coming, knocking the school system’s network offline several times a day. There was no breach of sensitive data files, but the attacks in which somebody deliberately overwhelmed the Avon Public Schools system in Connecticut still proved costly. Classroom lesson plans built around access to…
Singapore’s public sector to adopt new measures to tighten data security
Eileen Yu reports: Singapore’s government agencies will roll out several new “technical measures” for existing and new systems, including automated detection of emails containing sensitive data and stronger encryption for files. These are part of “interim” recommendations deemed necessary following a review of the public sector’s cybersecurity infrastructure and policies, which itself was carried out…
1.4 million student Social Security numbers found unencrypted in Maryland
Does anyone remember the massive data security incident involving the University of Maryland in 2014? Here’s a link to some of this site’s preliminary coverage of that breach. Hundreds of thousands impacted, lots of media coverage and analyses, and you’d hope that the state would have learned its lesson about storing and protecting student and…