Dan O’Sullivan reports: UpGuard’s Cyber Risk Team can now report that a misconfigured cloud-based file repository exposed the names, addresses, account details, and account personal identification numbers (PINs) of as many as 14 million US customers of telecommunications carrier Verizon, per analysis of the average number of accounts exposed per day in the sample that…
Category: Subcontractor
Former MedAssist employee charged with trafficking stolen identities from Southeast Alabama Medical Center patients
WSFA reports: A woman whose job specialized in assisting medical patients has been charged with identity theft, according to the Dothan Police Department. Dothan Police say Malika Shanta Oliver, 40, is charged with trafficking stolen identities. An investigation revealed Oliver was employed by a company called MedAssist which specializes in assisting medical patients with insurance…
Some Erie County OCY cases part of statewide data breach
Kevin Flowers has more on a breach recently noted on this site: Officials with the Erie County Office of Children and Youth said that fewer than 30 Erie County children had their identities compromised as part of a recent data security breach involving a third-party vendor that affected approximately 1,800 child welfare cases statewide. The…
Medical billing firm exposes unencrypted protected health information
Last month, DataBreaches.net was contacted by Kromtech Security’s research team and asked to assist it in alerting a medical billing firm that they were exposing patients’ personal and protected health information on their backup server. On June 12, DataBreaches.net sent iMax Medical Billing in Ohio a message and left them a voice mail, alerting them…
Trump Hotels notifies some guests of payment card breach that began in 2016
Trump Hotels is sending out data breach notification letters to hotel guests after a service provider notified them of a breach that began in August 2016 but was only detected this year. In their letter, they explain: We are writing to you because of an incident involving unauthorized access to guest information associated with your…
Cannabis delivery startup Eaze confirms theft of some user data from service provider
Jason Rowley reports: An anonymous source tipped off Crunchbase News that Eaze, the Series B-stage cannabis delivery startup with over $24 million in venture funding, has experienced a security incident. Some of its user data may have been stolen by a former employee of Don Davidson, MD, a medical service provider that provides patient consultations and medical cannabis recommendations…