There’s a follow-up to a breach previously reported on this site in 2016 in which a transcription vendor’s error resulted in the exposure of some Virtua Medical Group’s patients’ protected health information on the internet. It appears that New Jersey has settled charges against VMG over the incident. Of note, the charges are that the VMG…
Category: Exposure
FINRA, State Regulators Accused of Letting Sensitive Data Go Public
A whistle-blower is accusing some key financial regulators of allowing sensitive broker information to become readily accessible, even as industry watchdogs emphasized the need for companies to protect client data. According to a complaint lodged with the U.S. Securities and Exchange Commission, personal data such as brokerage account numbers provided to an industry-funded regulator have…
Panerabread.com Leaks Millions of Customer Records
Brian Krebs and I were both on the same mission today – to get Panera Breach to secure their customer data. I had been alerted to the situation by a reader who saw a paste explaining it all and revealing some customer data. Brian heard about it earlier from security researcher Dylan Houlihan, who had first…
TX: Personal info still being discarded and dumped improperly
Courtney Schoenemann reports that a security analyst who goes dumpster diving in his spare time, came across a filing cabinet of account receivables from an Austin home remodeling company that had been dumped by an as-yet unnamed company: “Their routing numbers, bank account numbers, some had their driver’s license numbers on their checks. Everything you…
CVS Health Sued For Allegedly Revealing HIV Status Of 6,000 Patients
There’s an update on a breach reported in August, 2017. CBS reports: CVS Health is being sued for allegedly revealing the HIV status of 6,000 patients in Ohio. A federal lawsuit claims CVS mailed letters last year that showed the status of participants in the state’s HIV drug assistance program through the envelopes’ glassine window….
NY: Arc of Erie County exposed client info for more than 2 years due to coding error
March 9, 2018 The Arc Erie County New York (The Arc) was recently made aware that certain information contained on two spreadsheets stored on its database was publicly available on the internet between approximately July 2015 and February 15, 2018 due to a problem with a link on The Arc’s website. This issue appears to…