A U.S. Department of Health and Human Services Administrative Law Judge (ALJ) has ruled that The University of Texas MD Anderson Cancer Center (MD Anderson) violated the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules and granted summary judgment to the Office for Civil Rights (OCR) on all issues, requiring…
Category: Of Note
New Charges in Huge C.I.A. Breach Known as Vault 7
There’s a huge update in a significant case noted last month on this blog. Adam Goldman reports: Federal prosecutors have charged a former software engineer at the center of a huge C.I.A. breach with stealing classified information, theft of government property and lying to the F.B.I. The engineer, Joshua A. Schulte, 29, of New York,…
Changes to Louisiana’s Data Breach Notification Law Go Into Effect August 1
Joseph J. Lazzarotti, Jason C. Gavejian, and Maya Atrakchi of Jackson Lewis write that changes to Louisiana’s data breach notification law (Act 382) go into effect on August 1 of this year. Those changes include expansion of the definition of personal information, requirements that notification be made no later than 60 days from discovery of…
Andhra Pradesh Tracked You As You Bought Viagra, Then Put Your Name and Phone Number on the Internet for the World to See
Gopal Sathe reports: Bengaluru — If you are the gentleman who bought Suhagra 50, a generic version of Viagra, and some Vomiford anti-nausea drops, on June 13 from a government-run Anna Sanjivini store in Anantpur in Rayalseema, your name, phone number and purchases, were listed on an Andhra Pradesh government website — until HuffPost alerted…
Authorities shut down Dark Web marketplace “Black Hand”
Carolina reports: In a joint operation, French police, the National Directorate of Intelligence and Customs Investigations (DNRED) have shut down one of the largest illegal dark web marketplaces “Black Hand” known for selling drugs, weapons, databases, stolen banking data and fake documents. According to a statement from the Minister of Public Action and Accounts, Mr. Gérald Darmanin on…
More details emerge about Chicago Public Schools data breach
If there is a Keystone Cops equivalent of a k-12 data breach, a recent incident involving Chicago Public Schools may be a strong contender. Last week, this site noted a breach that seemed puzzling in its description. Since that time, some informed parents have reached out to me to provide me with more details about…