Children’s Medical Center of Dallas, part of Children’s Health nationwide network, has paid HHS $3.2 million to settle charges stemming from multiple breaches involving ePHI and failure to comply with the Security Rule, despite notice of their shortcomings. Here’s HHS’s press release with a link to their determination: The U.S. Department of Health and Human Services, Office for…
Category: Of Note
Arming Employers Against Internal Hackers, the 11th Circuit Clarifies CFAA’s “Loss” Requirement
Carol Mongtgomery of Butler Snow LLP writes: The Eleventh Circuit ruled last week in a wrongful discharge turned Computer Fraud and Abuse Act (“CFAA”) case, spinning the employee’s case against his employer on its head. The facts of Brown Jordan International, Inc. v. Carmicle stemmed from the employment of Christopher Carmicle by Brown Jordan, a furniture manufacturer….
Developing: Shafer raided by FBI again, being detained
Justin Shafer, who was raided by the FBI in May after reporting that he found protected health information (PHI) leaking from a public FTP server, was raided by the FBI again today. Shafer, a dental technician and active researcher of patient management software systems in the dental field, routinely searches for and uncovers exposed PHI. He notifies…
Spanish Police Raided Suspects Linked to Notorious Hacker ‘Phineas Fisher’
Lorenzo Franceschi-Bicchierai reports: Police forces in Spain have raided several suspects linked to a cyberattack against the the union of the Catalan police Mossos D’Esquadra on Tuesday. That attack was carried out in May of last year by Phineas Fisher, a hacker who gained notoriety for exposing the secrets of spyware vendors FinFisher and Hacking Team. Several Spanish newspapers reported news…
MLB fines Cardinals $2 million for computer hack
Brian Feldt reports: Major League Baseball on Monday afternoon ordered the St. Louis Cardinals to pay $2 million and turn over two 2017 draft selections to the Houston Astros as a result of a former Cardinals employee hacking the Astros’ computer system. The league’s decision also permanently banned Chris Correa, who was fired by the Cardinals in July 2015…
NYS A.G. Schneiderman Announces Settlement With Acer After Data Breach Exposed More Than 35,000 Credit Card Numbers
NEW YORK – Attorney General Eric T. Schneiderman today announced a settlement with Acer Service Corporation (“Acer”), a computer manufacturer based in Taiwan, after a data breach of its website exposed over 35,000 credit card numbers. An investigation by the A.G.’s office revealed that sensitive Acer customer information was not protected by Acer for almost…