When I’m right, I’m right. The DOJ did raid Tiversa. DataBreaches.net was subsequently able to get additional details from a source. But first start with this report from Reuters’ Joel Schechtman: Federal agents are investigating whether cyber-security firm Tiversa gave the government falsified information about data breaches at companies that declined to purchase its data protection…
Category: Health Data
Topeka business fined $70,000 for dumping personal information in trash
There’s a follow-up to a breach I had noted on this blog in 2014. Release Date: Mar 15, 2016 TOPEKA – (March 15, 2016) – A business that dumped more than 900 files containing unredacted personal information of its customers and others will pay a hefty fine to settle claims that it violated Kansas consumer privacy…
UC Baby shuts down ultrasound video service due to lack of security
Yvonne Colbert reports: It bills itself as Canada’s No. 1 trusted company for 3D ultrasounds, but UC Baby has shut down its video service across the country because of a lack of security, after a CBC News investigation raised questions about whether customers can trust the service to protect their privacy. A tip from a viewer…
North Memorial Hospital settles HHS charges for $1.55M
First: refresh your memory of a 2011 breach involving Accretive Health, a business associate of North Memorial Hospital. Then read HHS’s press release how that breach just cost North Memorial Hospital $1.55 million, and why: $1.55 million settlement underscores the importance of executing HIPAA business associate agreements North Memorial Health Care of Minnesota has agreed to pay…
Confidential Ohio medical records exposed
Derrick Waller reports: A Cuyahoga County man said he stumbled upon a data breach involving medical records filed by the Ohio Bureau of Workers’ Compensation. The man, who did not want to be identified, said he filed a claim with the department. When he logged onto the state BWC website and entered his personal claim…
Sixth Circuit Rejects False Claims Act Claim Based on Health Data Breach
Evan Panich of McDermott Will & Emery writes: On March 7, 2016, the U.S. Court of Appeals for the Sixth Circuit decided United States ex rel. Sheldon v. Kettering Health Network, affirming a district court’s dismissal of a lawsuit alleging violations of the False Claims Act (FCA) relating to an alleged data breach. The relator alleged…