YourErie.com reports: A recent data breach was discovered at the Achievement Center of LECOM Health According to a news release release, ACLH discovered suspicious activity in two of its business email accounts back on March 2nd. An investigation revealed that there was unauthorized access to one email account from the Achievement Center of LECOM Health…
Category: Health Data
GitHub Leaks: Lessons Learned
Marianne Kolbasuk McGee reports: Recent incidents involving inadvertent exposure of patient data on GitHub, a software development and version control platform designed for collaboration, point to the need to ensure that data loss prevention tools are implemented, available security controls are leveraged and employees are made aware of the risks involved in using internet-facing platforms….
Fr: Baclesse cuts its Internet connection to prevent the spread of a computer worm
The Centre François Baclesse is one of three proton therapy centers for fighting cancer in France. This week, they also had to fight the results of a cyberattack by heartless criminals. Thankfully, their recent investment in improving their cybersecurity seems to have paid off. On April 28, the center issued the following statement on their…
Contact tracing data breach exposes health information of 72,000 Pennsylvanians
Rachel Yonkunas reports: Multiple investigations are underway after a contact tracing data breach exposed personal health information of 72,000 Pennsylvanians. The unsecured information was collected by employees of Insight Global—the company paid around $30 million in taxpayer money to perform contact tracing in the state. “You could see people’s phone numbers, how many kids they…
Thrifty Drug discloses security breach
Thrifty Drug Stores Inc., which does business as Thrifty White, is notifying customers about a security breach. Thrifty Drug in a statement said it worked with a business associate, Capture Rx, that discovered certain files on its system were accessed without authorization in February. Read more on Bismarck Tribune.
Implementing the HIPAA Security Rule: Call for Comments on NIST SP 800-66, Revision 1
Implementing the HIPAA Security Rule: Call for Comments on NIST SP 800-66, Revision 1 The National Institute for Standards and Technology (NIST) is planning to update the NIST Special Publication (SP) 800—66, Revision 1, An Introductory Resource Guide for Implementing the Health Insurance Portability and Accountability Act (HIPAA) Security Rule (“Resource Guide”). NIST is seeking stakeholder input…