Last month, Dignity Health reported breaches to HHS that involved three of their hospitals in Nevada: Dignity Health St. Rose Dominican Hospitals – San Martin (1764 patients); Dignity Health St. Rose Dominican Hospitals – Siena (2078 patients), and Dignity Health St. Rose Dominican Hospitals-DeLima (2174 patients). The incident involved the hospitals providing documentation to an unnamed local…
Category: Subcontractor
Oxnard city officials investigate data breach
Jeremy Childs reports: Oxnard city officials learned of a data breach last week that may have affected the personal data of utility customers in the city. On Friday, the city was contacted by a bank representative about fraudulent purchases being made with the cards people used to pay their utility bills using the city’s Click2Gov (Superion) online payment…
Insurance startup leaks sensitive customer health data
Zack Whittaker reports: A software startup that provides independent insurance brokers with customer management software has exposed highly sensitive information on thousands of insurance policy holders. A vast cache of data was stored on Amazon S3 storage bucket by AgentRun, a Chicago, Ill.-based company founded in 2012 by Andrew Lech, a former independent insurance broker….
SimplyWell (Viverae) notifying Lincoln Electric System employees of of personal health info breach
It’s been a while since I’ve noticed a third-party breach of a wellness vendor, but here we go, it seems. SimplyWell (“Viverae”) works with Healthbreak, who provides wellness services to the firm in question. SimplyWell, Inc. (“SimplyWell”) recently discovered a data privacy incident that may affect the privacy of certain Lincoln Electric System (“LES”) employees’…
More than 200,000 patients’ records were exposed on MedEvolve’s public FTP server – researcher
Common sense dictates that patients’ protected health information should not be made freely available on FTP servers that have no login required. And yet it still happens, and has happened again. Recently, this site learned of another FTP server exposing patients’ information. This particular FTP server belongs to MedEvolve, an Arkansas company that provides practice management…
Mason Law Office notifies clients of hack involving mycase.com
So for a law firm, I would think this would be a really bad breach to have to disclose. Mason Law Office in Sacramento sent a copy of their notification to the California Attorney General’s Office. Their notification reads, in part: What happened? On or about May 5, 2018, we discovered evidence of unauthorized access…