HHS has announced a settlement with St. Elizabeth’s Medical Center (SEMC) that relates to two potential HIPAA violations – neither of which have been reported previously on this site or PHIprivacy.net and neither of which appear on HHS’s public breach tool: St. Elizabeth’s Medical Center has agreed to settle potential violations of the Health Insurance Portability…
Category: Of Note
What Happened At OPM?
Add Adam Shostack’s post to your must-read list. Here’s a snippet: The National Journal published A Timeline of Government Data Breaches: I asked after the root cause, and Rich Bejtlich responded “The root cause is a focus on locking doors and windows while intruders are still in the house” with a pointer to his “Continuous Diagnostic Monitoring Does…
Two US telecom companies to pay $3.5 million for data breach
Grant Gross reports: Two sister mobile and telecom service providers will pay a combined US$3.5 million after the U.S. Federal Communications Commission found that they were storing customers’ personal data on unprotected servers accessible over the Internet. TerraCom and YourTel America failed to adequately protect the personal information of more than 300,000 customers, the FCC…
OPM revises estimate on 2nd breach; new total is 21.5 million affected
OPM has issued an updated statement on its lousy infosecurity two recently detected breaches. It reads, in part: OPM recently discovered two cyber-security incidents that have impacted the data of Federal government employees, contractors, and others: In April 2015, OPM discovered that the personnel data of 4.2 million current and former Federal government employees had…
Ca: Student loan data breach class action lawsuit can expand, Federal Court rules
The Canadian Press reports: The Federal Court of Appeal has ordered the expansion of a class action lawsuit brought by thousands of students whose personal loan data was lost by the federal government. And the lawyer representing the students says that decision could have far-reaching implications for other similar cases. Read more on CBC News….
Hacker group that hit Twitter, Facebook, Apple and Microsoft intensifies attacks
Lucian Constantin reports: The hackers that targeted Twitter, Facebook, Apple and Microsoft developers two years ago have escalated their economic espionage efforts as they seek confidential business information and intellectual property they can profit from. The group, which security researchers from Kaspersky Lab and Symantec call Wild Neutron or Morpho, has broken into the networks…