FTC Press Release: CVS Caremark has agreed to settle Federal Trade Commission charges that it failed to take reasonable and appropriate security measures to protect the sensitive financial and medical information of its customers and employees, in violation of federal law. In a separate but related agreement, the company’s pharmacy chain also has agreed to…
Category: Health Data
And yet even more p2p breaches
Thanks to Rian of RedTeam Protection, here are some more breaches they uncovered: An executive producer at a Manhattan based television Production Company published 2,755 documents onto the gnutella file-sharing network. Contractors of this firm were required to provide their name, date of birth, and social security number for tax purposes. The invoices with personal…
AL: Computer Hacking at UA (updated)
Diana Moorer reports: Thousands of people in West Alabama are learning their personal information could be at risk. According to a University of Alabama spokesperson, a small portion of the university’s computer system was recently breached by a hacker. UA said they discovered the intrusion and took steps to block further unauthorized access. The university…
CA: Attorney General Brown Announces Two Arrests in $1.34 Million Medicare Fraud Case
Attorney General Edmund G. Brown Jr. today announced the arrests of two individuals who “hatched a scheme” to file false claims under Medicare for medical services that were never performed. “The defendants hatched a scheme to bilk Medicare out of more than a million dollars,” Attorney General Brown said. “They stole the identities of people…
More p2p fiascos
Rian from RedTeam Protection, a division of Tony Josephs and Sons Investigations Inc., just sent me another batch of p2p cockups that exposed personal — and in some cases — sensitive medical — information. In each case, RedTeam advised the entity and/or helped ensure removal of the filesharing application. Some of these breaches are more…
UK: ICO takes enforcement action against Hastings and Rother PCT for data loss
From the press release (pdf) from the Information Commissioner’s Office (ICO): The Information Commissioner’s Office (ICO) has taken enforcement action against Hastings and Rother Primary Care Trust (PCT) following a breach of the Data Protection Act. This is the eighth time the ICO has taken enforcement action against an NHS organisation for breaching the Data…