Dave Levinthal reports: A pro-Donald Trump super PAC needs to make its accounting practices great again — if they ever were in the first place. Great America PAC on Thursday night erroneously published the credit card numbers and expiration dates belonging to 49 donors, a Center for Public Integrity review of its latest Federal Election Commission campaign finance disclosure…
Category: Exposure
$2.14 million HIPAA settlement underscores importance of enterprise-wide risk analysis
St. Joseph Health (SJH) has agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules following the report that files containing electronic protected health information (ePHI) were publicly accessible through internet search engines from 2011 until 2012. SJH, a nonprofit integrated Catholic health care delivery…
TX: Katy ISD notifies parents after third-party error by SunGard K-12
Shelby Webb reports: Katy ISD warned about 78,000 of its students and staff members that their personal data – including social security numbers, names and birth dates – may have been accessed during a security breach. Katy officials notified parents in a letter dated Oct. 7, more than a month after it learned of the…
Vermont Attorney General Enters Unique Data Security Settlement With Software Developer
October 12, 2016 In a settlement announced today, software company Entrinsik agreed to provide better warnings after a Vermont college experienced a security breach that potentially exposed 14,000 social security numbers due to the ordinary use of its reporting tool. Because the Attorney General believes that the software practice involved is widespread and many companies may not…
Lithuania: OCCRP Partner Finds ID Theft Hole in Election Site
OCCRP reports: Technical flaws in a voter support site that cost more than US$ 1 million in taxpayer and EU money have left thousands of Lithuanians’ personal data vulnerable, Organized Crime and Corruption Reporting Project partner 15min.lt has reported. An anonymous whistleblower tipped off 15min.lt to flaws in The Voter’s Page (rinkejopuslapis.lt), a system financed by the…
Concentrix: Tax credits firm in ‘data protection breach’
Peter Whittlesea reports: A US firm used by the government to cut tax credit payments has suffered a data protection breach, it is claimed. Facebook campaign group Concentrix Mums believe around 100 claimants have been sent information such as bank statements, self assessment details and National Insurance numbers of others. A Concentrix spokesperson said: “We…