From DOJ, this press release today about a case where a former employee exceeded previously authorized access: A Maryland man was sentenced by U.S. District Judge Catherine C. Blake today to 12 months and one day in federal prison, followed by three years of supervised release, for illegally accessing and damaging the computer network of…
Category: Insider
Shopify says two ‘rogue’ employees involved in data breach to obtain customer records
The Canadian Press reports: Shopify Inc. is working with the FBI after two “rogue members” of its support team engaged in a scheme to illegitimately obtain customer transactional records of some merchants. The Ottawa-based tech firm says it terminated the employees’ access to its network and referred the data breach to law enforcement. Read more…
Montefiore employee terminated after data breach affected up to 4,000 patient records
Jeff Lagasse reports: On Friday, Montefiore Medical Center alerted patients that a former employee had recently stolen personal information from roughly 4,000 patient records, which led Montefiore to terminate the employee upon learning of the security breach and potential identity theft. Read more on Healthcare Finance. Their story appears to have a typo in it, though: the…
PA: Geisinger Berwick notifying hundreds of patients after firing employee for improper access to records
Geisinger Berwick is notifying more than 700 patients whose patients’ records were accessed without justification by a now-former employee. As first reported by Times Leader, the improper access began in June 2019 and would likely still be continuing were it not for an employee that reported their concern about the employee’s actions to the clinic…
Hackers tried to slip Trojan viruses into St. Louis County’s website, but never got in, IT director says
Jeremy Kohler reports: St. Louis County government’s information technology staff took down the county website on Sept. 1 after discovering attacks on its server designed to take control of the site, the IT director said Monday. They were able to respond to the threat before the hackers could succeed, acting IT director Charles Henderson said…
Ca: Multiple Penalties Issued to Individual Convicted of Health Information Breaches
September 10 — A former medical clinic employee pleaded guilty on Wednesday, Sept. 2 to breaching the health information of several individuals in contravention of the Health Information Act (HIA). Olivia Franc was fined $6,000, given three years probation including not being able to access health information, and is required to complete 180 hours of community…