In July, DataBreaches.net reported on a leak it had discovered in June. On September 17, Medico of South Carolina reported a breach to HHS that reportedly impacted 6,489 patients. On December 11, they issued a press release that appears to be related to the same incident. Medico of South Carolina “(Medico”) is a medical billing company…
Category: Subcontractor
Waco’s online water payment portal breached, card data possibly captured
Another day, another Click2Gov client reporting a breach. This time it’s Waco, Texas. Update: Gemini Advisory reports that 2500 cards were involved.
Police Procedural: How South Carolina Arrest Records Were Exposed
UpGuard reports: The UpGuard Research team can now disclose that a cloud storage bucket containing personally identifiable information (PII) for thousands of people in the South Carolina justice system has been secured. An employee of Spartan Technology, a South Carolina tech company, had uploaded a collection of backups to the AWS S3 storage service. The data collection…
Banner Health agrees to $6 million settlement over 2016 breach
Jessica Kim Cohen reports an update on a 2016 breach covered on this site: Banner Health has agreed to pay up to $6 million to victims of a massive data breach the Arizona health system experienced in 2016, according to court documents filed last week. The plaintiffs in the case filed the motion for preliminary…
Cucamonga Valley Water District discloses Click2Gov breach
From the Cucamonga Valley Water District website, a Dec. 4 notification: Cucamonga Valley Water District (CVWD) was recently informed of a data breach of the Click2Gov web portal used by CVWD customers for one-time credit card payments. CVWD values its customers and respects the privacy of their information, which is why, as a precautionary measure,…
IT vendor fined after data of 47,800 students, parents and staff of Singapore schools hacked
Nicole Chang reports: IT vendor Learnaholic has been fined S$60,000 after the personal data of more than 47,000 students, parents and staff of various schools were hacked. The organisation provided services including attendance-taking and e-learning systems to schools in Singapore under a contract with the Ministry of Education. However, lapses in its security arrangements led…