It sounds like something broke down somewhere in the disposal of 96 boxes of medical office documents found in a dumpster, but it’s not yet clear who’s responsible. The Wyoming Board of Medicine reported Monday that medical office documents from College Hill Health Center have been retrieved but the board has not had a chance…
Category: Exposure
Asiana Airlines Website Has Customers’ Personal Data Leak
Huh Sung-soo reports: A lack of security on Asiana Airlines’ website exposed the sensitive information of its passengers. […] Asiana Airlines released a statement that there was an exposure of the universal resource locator (URL) for those attached files within contents they uploaded on the frequently asked questions (FAQ) of its Internet bulletin board by some…
Oh, damn, Friday edition.
Several weeks ago, I noted a misconfigured 2014 version of World-Check database and an analysis of its contents. The database contains information on individuals who have histories of allegedly being involved in financial crime, terrorism, or other types of crime. Banks and other institutions use such databases as part of their due diligence. Today, I see that two…
Alabama website breach revealed personal data of some state retirees
Mike Cason reports: A Mobile woman who was helping her parents with their state health insurance coverage saw names, dependent’s names, dates of birth and Social Security numbers of other insurance program members on the system’s website. Amanda Murdick said when she opened a portal for members on the website of the Public Education Employees’…
MT: State health employees fired after giving data to lawmakers
AP reports: Montana health officials have fired two employees for providing the Social Security numbers and other personal information of 185 childcare providers to three state legislators. The Associated Press obtained copies of letters mailed to the Republican lawmakers from Department of Public Health and Human Services director Richard Opper asking them to destroy the…
OHSU pays nearly $3 million over two data breaches in 2013
Lynn Terry has the scoop on what appears to be a new HHS resolution agreement. There’s nothing up on HHS’s site or in my mailbox yet about this one, but I had covered the four breaches mentioned in her report as well as a more recent breach (search OHSU). Oregon Health & Science University has…