Helen Wegner reports: A hospital employee is accused of sharing patient identities with scammers who then fraudulently tried to obtain their COVID-19 unemployment benefits, according to court documents unsealed this week. Matthew Lombardo worked at the Scripps Health hospital in San Diego as a patient service representative where he obtained and verified patient information, including…
Category: Health Data
NZ: Fear patient data may have been stolen from Auckland DHBs
Tom Pullar-Strecker reports: A data breach may have occurred at the organisation that provides health IT services to more than a third of the country, amid growing indications of a serious cyber-security incident. A spokeswoman for the Office of the Privacy Commissioner said it was notified by Counties Manukau DHB of a possible data breach…
Ca: Health unit privacy breach exposes email addresses of 500 residents of Kawartha Lakes, Northumberland, and Haliburton
KawarthaNOW reports: The Haliburton, Kawartha, Pine Ridge District Health Unit has reported a privacy breach, in which a mass email sent to around 500 residents in Kawartha Lakes, Northumberland, and Haliburton exposed their email addresses to anyone who received the email. Read more on KawarthaNOW
German pharmacies stop issuing COVID vaccine passes after security breach
Update: I had originally linked to a report on Reuters. @Ju916 tweeted to me: First of all those were no threat actors but security researches demonstrating problems of the system in good faith. Second: those digital certificates are just comodity items. The original document (a yellow vaccination passport) can replace them in any situation. Because…
UPMC Settles 2014 Data Breach Litigation for $2.65 Million
HIPAA Journal reports that the University of Pittsburgh Medical Center (UPMC) has agreed to a $2.65 million settlement to resolve a data breach lawsuit filed by employees affected by a February 2014 data breach that resulted in many employees becoming victims of tax refund fraud. Read about the terms of the settlement on HIPAA Journal.
Talbert House investigating hack and theft of employee and client data
On July 9, threat actors calling themselves “Marketo” added a listing to their leak site for Talbert House in Ohio. Talbert House is an agency with a network of services focusing on prevention, assessment, treatment and reintegration for clients with a variety of issues. Their affiliates include the Council on Child Abuse of Southern Ohio…