I know the arguments against holding covered entities for auditing and monitoring their business associates periodically for compliance with any contracts, but when you don’t hold covered entities really accountable for checking that their vendors or business associates are living up to their contracts, stuff like this happens. And it can go on for years….
Category: Health Data
Canadian hospitals ‘overwhelmed’ by cyberattacks fuelled by booming black market
CBC News reports: Canada’s health system is under siege from unrelenting cybercriminals trying to access patient information and other data, according to health-care professionals and cybersecurity experts who say hospitals and clinics are unable to cope with the growing threats. The problem has become so big that some are calling for Ottawa to impose national cybersecurity standards on…
UK: First Minister promises to build public trust in Test and Protect following NHS Orkney coronavirus data breach
Paul Malik reports: Faith in the Test and Protect system could be undermined should data breaches like the one committed by NHS Orkney be repeated, Nicola Sturgeon has warned. Ms Sturgeon was responding to questions after it was discovered more than 50 coronavirus test results were sent “in error” to a local business. As well…
Security flaw in Qatar’s COVID-19 contact-tracing app ‘put 1m people’s sensitive data at risk’
From Amnesty USA: Serious security vulnerabilities in Qatar’s mandatory contact tracing app, uncovered by Amnesty International, must act as a wake-up call for governments rolling-out COVID-19 apps to ensure privacy safeguards are central to the technology. An investigation by Amnesty’s Security Lab discovered the critical weakness in the configuration of Qatar’s EHTERAZ contact tracing app….
One down: Nathan Wyatt of thedarkoverlord agrees to plead guilty
A U.K. man extradited to the U.S. in December to stand trial for his role in thedarkoverlord (TDO) has agreed to plea guilty to resolve all charges against him. Nathan Francis Wyatt, also known as “Crafty Cockney,” has agreed to plead guilty to charges stemming from his role in some of thedarkoverlord’s attacks on entities…
TN: The Little Clinic notifies more than 10,000 patients after discovering glitch in online appointment system
The following is a press release: NASHVILLE, Tenn.May 22, 2020– The Little Clinic (TLC) announced today that patients could have had their protected health information (PHI) accessed due to a failure in TLC’s online appointment functionality. The Little Clinic made the discovery internally and found if a patient made an appointment and modified that appointment online,…