From the U.K.’s Information Commissioner’s Office: A former family intervention officer at St Helens Borough Council has been sentenced for unlawfully accessing social services records. Rachel Anderton was prosecuted for viewing records on the council’s case management system between 17 January 2019 and 17 October 2019 without having a business need to do so. An…
Category: Insider
Ie: Data protection breach at military medical facility
Neil Michael reports: A Defence Forces investigation is under way into another data protection breach of the military’s electronic health record system. The latest investigation centres on the alleged actions of a healthcare worker at a military medical facility. The Defence Forces has said it is the third alleged breach in relation to the electronic military medical…
Fi: Helsinki and Uusimaa Hospital District confirms data breach by ex-staff member, 900 patients’ data compromised
YLE News reports: The Helsinki and Uusimaa Hospital District (HUS) has discovered that a former employee, who served as a practical nurse within the district, breached the privacy of nearly 1,000 patients. The case was confirmed by HUS Administrative Chief Medical Officer (AVMO) Teppo Heikkilä, who said the nurse gained access to the files through the…
Tesla notifies employees of data breach
Barret Loux reports: Tesla has started notifying current and former employees who were affected by a data breach that occurred in May. The company conducted an investigation and found that two former employees had misappropriated confidential information in violation of Tesla’s IT security and data protection policies. As a result, Tesla has filed lawsuits against…
Insider-Wrongdoing in the Healthcare Sector
Michelle Del Guercio writes: On June 8, the Health Sector Cybersecurity Coordination Center (“HC3”) published Types of Cyber Threat Actors That Threaten Healthcare. In that publication, they identify five basic types of insider threats: careless or negligent workers malicious insiders inside agents disgruntled employees third parties In 2016, when Protenus and DataBreaches first began collaborating on…
Arizona man who extorted Georgia Tech sentenced to prison
ATLANTA, July 27 – Ronald Bell has been sentenced to two years and nine months in prison for extorting Georgia Tech. Bell recruited a security guard to falsely claim that the guard witnessed an assault by its basketball coach in exchange for part of the extortion payout he expected to receive from the university. “Ronald…