Today’s post is a reminder that if you make claims on your web site that you take privacy and security very seriously and that you respond promptly to responsible disclosures, you really need to suit your actions to your words. On July 7, Timothy French of Underdog Security contacted LG to report that they had…
Category: Commentaries and Analyses
Dental Practice Pays $10,000 to Settle Social Media Disclosures of Patients’ Protected Health Information
HHS OCR has announced another settlement of a HIPAA complaint: Elite Dental Associates, Dallas (“Elite”) has agreed to pay $10,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services and to adopt a corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act…
AU: Inside a massive cyber hack that risks compromising leaders across the globe
Garrett Davis reports: One email was all it took for hackers to steal some of the most personal information from people potentially now in high-ranking roles across the globe. The cyber attack was so sophisticated it didn’t even need the person to click on a link or open a document to compromise decades worth of…
IN: Goshen Health notifies patients potentially impacted by 2018 data security breach
Sometimes, an incident that doesn’t appear to require notification may require notification under HIPAA. In an August, 2018 incident reported on The Elkhart Truth that involved Goshen Health, the health system originally determined that no notification was required, but when forensic investigators came in months later and looked for any information that might have been…
Presidential Proclamation on National Cybersecurity Awareness Month, 2019
September 30, 2019 — During National Cybersecurity Awareness Month, we recognize that protecting cyberspace is essential to our national security and economic stability. We also underscore the responsibility individuals have to secure and safeguard their personal devices, technology, and networks from cyber threats. Ok, stop right there. I couldn’t even get myself to read the…
Dunkin’ Donuts says there’s ‘no basis’ for lawsuit over 2015 security incident
Catalin Cimpanu reports that Dunkin Donuts has responded to the lawsuit filed by the NYS Attorney General with a statement to them that said, in part, that there’s “absolutely no basis” for the lawsuit, and that they were “shocked and disappointed” by the New York Attorney General’s Office decision to move forward with litigation. Read…