Protenus, who provide software to monitor, detect, and reduce insider mis-steps such as snooping and other egregious wrongdoing, has been writing a series of posts on the cost of a breach. In this week’s installment, they looked at the costs of forensics and notification. Considering I’ve recently been blogging about entities that don’t have insurance for breaches, some…
Category: Commentaries and Analyses
Short-term monitoring inadequate for Banner, Anthem data breaches – BizWest Editorial
If BizWest Media‘s editors think that what Banner and Anthem offered in the wake of their breaches isn’t enough, they’d likely be totally appalled that Athens Orthopedic Clinic hasn’t offered its patients any credit monitoring. Here’s how the BizWest Media editorial begins: Short-term monitoring inadequate for Banner, Anthem data breaches It’s not enough. Banner Health…
Omegle, the Popular ‘Chat with Strangers’ Service Leaks Your Dirty Chats and Personal Info
Swati Khandelwal reports: Have you heard of Omegle? The popular, free online anonymous chat service that allows you to chat with random strangers, without any registration. The service randomly pairs you in one-on-one chat window where you can chat anonymously over text or webcam. But, are your chats actually Anonymous? No, all your chats are recorded…
Amen, HIStalk, amen!
One of the more teeth-gnashing aspects of investigating and reporting on breaches is that I later see “mainstream” news outlets reporting on those breaches as though they had no information about them other than what the entity put out in their press release. So-called “news” outlets do not serve their readership well when they become complicit…
Not Just Credit Cards, Hackers Are Now Stealing Medical Records
Attacks on the healthcare sector is a global concern. Amitai Ziv writes: News that a Knesset member recently underwent a medical procedure was leaked to the media and onto social networks within days. Given that most people would prefer their medical information remain private, the leak presumably caused great embarrassment to the MK and his…
OCR Announces Initiative to More Widely Investigate Breaches Affecting Fewer than 500 Individuals
Glad to see this announcement from HHS/OCR: Since the passage of the Health Information Technology for Economic and Clinical Health Act of 2009 and the subsequent implementation of the Health Insurance Portability and Accountability Act (HIPAA) Breach Notification Rule, OCR has prioritized investigation of reported breaches of protected health information (PHI). The root causes of…