Category: Subcontractor

A Sprint contractor left thousands of US cell phone bills on the internet by mistake

Posted on by Dissent

Zack Whittaker reports: A contractor working for cell giant Sprint stored on an unprotected cloud server hundreds of thousands of cell phone bills of AT&T, Verizon and T-Mobile subscribers. […] U.K.-based penetration testing company Fidus Information Security found the exposed data, but it wasn’t immediately clear who owned the bucket. Read more on TechCrunch.

Read more

More details emerge on Magellan Healthcare breach

Posted on by Dissent

Some breaches dribble out over time, especially when they involve a business associate.  This time, it’s Magellan Healthcare, Inc. On September 17, Magellan Healthcare, Inc. notified HHS after an employee of Magellan Rx Management fell prey to a phishing attack in May that was discovered July 5.  Analysis of the contents of the employee’s email…

Read more

Select Health Network reveals compromise of employee email accounts that may impact an unspecified number of patients

Posted on by Dissent

The following press release is by what appears to be a business associate under HIPAA. It does not name the covered entities whose patients or insured members may have been impacted. Will we see notices from those covered entities? Probably not, unless more than 500 were affected for a particular covered entity. The notice also…

Read more

City of Norman, OK temporarily suspends utility payment portal; ditches Click2Gov after another potential security incident

Posted on by Dissent

The City of Norman, Oklahoma has suspended its online portal for paying utility bills after they were notified of a potential security incident involving Click2Gov software by CentralSquare Technologies. At this point, the city seems to have had enough with Click2Gov security issues. The city is currently in the process of switching over to another…

Read more