What follows is a somewhat unsatisfactory notice. It does not indicate when the email accounts were compromised. It does not indicate when the firm first discovered it or how they discovered it. It does not indicate how many people are being notified by them. It does not explain to patients why a holdings firm has…
Category: Subcontractor
Select Health Network reveals compromise of employee email accounts that may impact an unspecified number of patients
The following press release is by what appears to be a business associate under HIPAA. It does not name the covered entities whose patients or insured members may have been impacted. Will we see notices from those covered entities? Probably not, unless more than 500 were affected for a particular covered entity. The notice also…
City of Norman, OK temporarily suspends utility payment portal; ditches Click2Gov after another potential security incident
The City of Norman, Oklahoma has suspended its online portal for paying utility bills after they were notified of a potential security incident involving Click2Gov software by CentralSquare Technologies. At this point, the city seems to have had enough with Click2Gov security issues. The city is currently in the process of switching over to another…
Marriott notifies associates of breach at unnamed vendor
In a year that has seen a number of reports that suggest how costly a past data breach may be for Marriott in Canada as well as the U.K. and U.S., Marriott is disclosing yet another breach. On October 30, Marriott International notified the California Attorney General’s Office of a breach at an unnamed vendor…
Florida Virtual School needs new board, new ethics standards, state education department says
Beth Kassab and Leslie Postal report: The troubled Florida Virtual School should get a new governor-appointed board, new ethics standards for employees and a new inspector general inside the school to oversee internal audits and investigations, according to a report released Friday by the Florida Department of Education. And some of the criticism relates to…
More victims of yet another Click2Gov breach this week
Yet another report of a data breach involving Click2Gov software by Central Square Technology. Previous coverage of the publicly disclosed breaches from 2017, 2018, and 2019 are linked from here. Also see research reports by FireEye, Gemini Advisory, and RBS for additional background. The latest victim to come forward — at least the most recent…