Taylor Regional Hospital in Kentucky recently notified 190,209 patients of breach that they identified in January. An investigation determined that an unauthorized person had gained access to their network between November 2, 2021 and January 19, 2022, and obtained certain files from their systems containing patients’ names, and one or more of the following: address,…
Category: Exposure
Hong Kong electoral office apologizes after employee accidentally sends details of 15,000 voters to random email
Kathleen Magramo reports: Hong Kong’s electoral office has apologised after an employee failed to follow guidelines and sent the personal details of about 15,000 voters to a random email address. The Registration and Electoral Office (REO) on Friday said the staff member intended to send files containing electors’ particulars to her personal email address on…
Japanese medical online consultation site leaking consumer-submitted images of symptoms
After multiple unsuccessful attempts to get a popular Japanese medical online consultation site to secure a misconfigured bucket, researchers at SafetyDetectives have decided to publicly disclose the leak. Doctors Me provides customers with on-demand access to professional medical advice. People can sign up for a monthly unlimited access plan (for less than $3.00 per month)…
A security lapse exposed India’s CISF personnel files and health records
Zack Whittaker reports: Internal documents, officer health records, and personnel files belonging to India’s Central Industrial Security Force were spilling online because of a data security lapse. A security researcher in India, who asked not to be named for fear of retaliation from the Indian government, found a database packed with network logs generated by…
Shooting the Whistleblower? Defamation Suit Claims Nuance Communications Gave False Info to FBI, SEC, Retaliated Against Whistleblower
There is an interesting lawsuit stemming from an incident that had previously been claimed to be a rogue insider’s doing. Now Marc Stolowitz, the former employee, is suing the firm, Nuance Communications, claiming that the firm falsely accused him of hacking them to cover up the fact that he was in the process of blowing…
Arkansas AG Sues Defunct Health Provider for Mishandling Patient Records
Scott Carroll reports: Arkansas Attorney General Leslie Rutledge on Thursday announced a lawsuit against the defunct Eastern Ozarks Regional Health for failing to protect sensitive patient information after it closed. The former hospital in Cherokee Village is accused of leaving behind thousands of unsecured patient and employee records that contain social security numbers, driver’s license…