Sometimes it takes months until I see a notification related to a leak I reported to an entity. This week, Mobile Anesthesiologists disclosed a data leak. Their notification is embedded below. The back story on this one is that in December, a researcher alerted DataBreaches.net to a leak involving what appeared to be ePHI from…
Category: Exposure
WI: 900 emails of COVID vaccination registrants accidentally shared in Walworth County
Lake Geneva Regional News reports: Over 900 emails belonging to those who registered for COVID-19 vaccines were accidentally shared with the public. On March 11, the Walworth County Department of Health & Human Services announced a breach of the Health Insurance Portability and Accountability Act (HIPAA) related to its vaccine registration process. Read more on…
Meanwhile, over in Germany…
Some cybercrime reports out of Germany in the past 48 hours (translated): The city administration of Ebeleben was the victim of a massive hacker attack on Wednesday. All servers are out of order, it says from the town hall. For this reason, the city administration will remain closed until Tuesday, March 16, inclusive. Read more…
Personal information of over 50,000 Premier Diagnostics customers exposed on unsecured server
Diego Romo reports: A Consumer privacy watchdog, “Comparitech,” found that Lehi based company Premier Diagnostics was storing sensitive customer information on a publicly accessible server, leading to a potential data breach for over 50,000 customers. “This data could be in anyone’s hands now,” said Paul Bischoff, editor of comparitech.com. “So, your ID and your medical card are probably…
Ca: Sarnia IC apologizes for privacy breach, says he won’t resign
Oh, oops! Cathy Dobson reports: Sarnia Integrity Commissioner Paul Watson has apologized for publicly displaying confidential information during a Zoom presentation to city council Monday. “I am a 60-year-old trying to use technology during a pandemic and I made an unfortunate mistake,” said Watson. “I’m very sad about it and sorry for those individuals whose…
Told your organisation is leaking data? Here’s how not to respond
How many times have I blogged about “Don’t Shoot the Messenger” — the inappropriate response of some entities when notified that they have a leak or data breach? Here’s a current example, as noted by Graham Cluley. It all started routinely enough: Platform engineer and open source enthusiast Rob Dyke says that he’s found himself…