Two men accused of stealing data from the Federal Ministry of Health face trial in Berlin Thursday. A system administrator is alleged to have provided a pharmaceutical lobbyist with inside information. An external IT expert working for the German Health Ministry is being charged with receiving bribes from a lobbyist working for the pharmaceutical industry to spy…
Category: Subcontractor
NYU Langone Health Notifies Patients of Improperly Disposed Binder Containing Patient Information
NYU Langone Health notified patients this week that a binder containing a log with information related to presurgical insurance authorizations from NYU Langone Health Pediatric Surgery Associates was mistakenly recycled by NYU Langone’s cleaning company on October 17, 2017. Patient social security numbers were not included and therefore are not at risk, and there is…
Cape Cod students affected by Medicaid billing vendor’s data breach
Cynthia McCormick reports on the resolution of a lawsuit stemming from a laptop theft in 2014. The breach was previously reported on this site: Hundreds of Cape Cod students — many with special needs — were put at risk of identity fraud and theft when a laptop was stolen from an employee of a billing…
Real Time Health Quotes leak affected health insurance applicants
So it appears I missed a third-party vendor/business associate leak that affected at least two covered entities and possibly more. Great thanks to Humana for sending along the vendor’s press release when I inquired about a breach report Humana had made to HHS as affecting 5,764 members or potential members. It turns out that the…
July Systems data leak: Massive trove of sensitive information exposed online via unsecured database
India Ashok reports: A massive trove of sensitive data was left freely exposed online by San Francisco-based July Systems. The company’s cloud-based location intelligence and engagement platform called “Proximity MX”, which contains proprietary information belonging to the firm and its clients, were exposed via unsecured Amazon S3 databases. […] According to security researchers at Kromtech,…
AU: Data breach hits Department of Social Services credit card system
For more than one year, employee data of approximately 8,500 Department of Social Services employees was exposed online due to an error by contractor Business Information Services. Paul Karp reports that the compromised data included: credit card information, employees’ names, user names, work phone numbers, work emails, system passwords, Australian government services number, public service classification…