As I first reported in co-breaking the story about the massive leak of voter records that had been discovered by Chris Vickery, I called the California Attorney General’s Office to alert them to the leak of California voters’ information. The attorney I spoke with on December 21 told me she was immediately forwarding the information I provided, including the IP…
Category: Of Note
New NC law will let parents put security freeze on child’s credit report
WECT in North Carolina is reporting on a new law in NC that might become a model for other states when it comes to protecting children from identity theft: Parents in North Carolina will soon be able to help protect their children from identity theft. A new bill that takes effect January 1, 2016 will…
Few Consequences For Health Privacy Law’s Repeat Offenders
Regulators have logged dozens, even hundreds, of complaints against some health providers for violating federal patient privacy law. Warnings are doled out privately, but sanctions are imposed only rarely. Companies say they take privacy seriously. by Charles Ornstein and Annie Waldman ProPublica, Dec. 29, 2015, 4 a.m. This story was co-published with NPR’s Shots blog. When CVS Health customers complained…
191 million voters’ personal info exposed by misconfigured database (UPDATE2)
– Personal, public, and some non-public information on 191 million registered voters exposed – Efforts to identify database’s owner to notify them unsuccessful – Database still exposed A misconfigured database leaking the personal information of over 191 million voters was reported to DataBreaches.net by researcher Chris Vickery. This report includes some of the results of an investigation by Vickery,…
TR: Gülenists accused of massive data theft to track thousands
A police raid on the headquarters of a business conglomerate linked to the Gülen Movement revealed a server containing data of thousands of people, ranging from tax information to social security data stolen from national servers Hazal Ates reports: A server discovered in a police raid of Kaynak Holding, a business conglomerate with close ties to…
Can a Business Associate be Liable for a HIPAA Breach When Its Client Isn’t a Covered Entity?
Yesterday morning, some of were following up on a ProPublica report about a New Jersey clinic who, when suing patients for overdue accounts, included their diagnostic codes in materials sent to their collection agency. Those records – containing the patients’ names, diagnostic codes, and treatment codes – became part of public court records. There were some…