Cassandre Coyer reports: A US federal judge dismissed much of the Securities and Exchange Commission’s lawsuit against SolarWinds Corp. that alleged the software provider misled investors about its cybersecurity practices and the significance of a major data breach that spilled into the US government. Thursday’s ruling was seen as a blow to the SEC’s aggressive efforts to regulate…
Category: Subcontractor
Au: Healthed data breach exposes personal details
Michelle Wisbey reports: The personal details of a large number of GPs have been published online, in a data breach leaving doctors feeling ‘significantly concerned’. Australian healthcare educator Healthed confirmed that late on Sunday, 14 July, the company became aware of ‘a vulnerability within the Healthed website’ It traced this to work undertaken by a…
Students’ Personal Data Mismanaged; Data Sent to Foreign Businesses, Used to Update Apps
The Yomiuri Shimbun reports: Local governments have authorized Recruit Co. — a provider of educational apps — to directly obtain public school students’ personal data and manage it, The Yomiuri Shimbun has learned. The problem is connected to devices, such as personal computers and tablets, which elementary and junior high schools distribute to their students….
HealthEquity says data breach is an ‘isolated incident’
Lorenzo Franceschi-Bicchierai reports: On Tuesday, health tech services provider HealthEquity disclosed in a filing with federal regulators that it had suffered a data breach, in which hackers stole the “protected health information” of some customers. In an 8-K filing with the SEC, the company said it detected “anomalous behavior by a personal use device belonging…
How many clients and patients were affected by a ransomware attack on EqualizeRCM? We have no idea.
On August 17, 2023, SysInformation Healthcare Services, LLC, d/b/a EqualizeRCM (“SysInformation”) notified HHS of a breach. The firm, a business associate that provides revenue and billing cycle management services, reported that 501 patients had been affected. That number is generally interpreted as a placeholder marker when the entity has not yet figured out the real…
Infosys McCamish Systems ransomware attack affected more than 6 million people
Infosys McCamish Systems (“IMS”) in Atlanta provides software and services to the life insurance industry. In October 2023, it was the victim of a ransomware attack that affected 6,078,263 people. As they explain in a notification to the Maine Attorney General’s Office, they were providing notification on their own behalf as a data owner and…