Back in September, DataBreaches.net reported on an exposed MongoDB database that had been discovered by MacKeeper security researcher Chris Vickery. The database contained protected health information from tens of thousands of patients seen at dozens of clinics that were clients of EMR4All and Rehab Billing Solutions, companies owned by Todd Jones. Since that report, we have begun…
Category: Subcontractor
Horizon says privacy breach could affect up to 170K N.J. customers
Susan K. Livio reports that a vendor error has affected as many as 170,000 BCBS members in New Jersey: Some benefit letters mailed to as many as 170,000 Horizon Blue Cross Blue Shield of New Jersey customers over a recent three-day period included the names, policy numbers and the physician information of other policy holders — a…
TX: Austin Pulmonary Consultants notifies patients after new cleaners throw out records meant for shredding
It’s been a while since I’ve seen any reports of cleaning contractors accidentally disposing of patient records intended for shredding, but a recent report by Austin Pulmonary Consultants may be a useful reminder that all new cleaning vendors or contractors need to ensure their staff knows what is for disposal and what is for shredding. In…
Indiana Health Coverage Program members notified of breach
HP Enterprise Services LLC (HPE), a Medicaid fiscal agent for the Indiana Health Coverage Program, recently notified HHS of the theft of 1,235 members’ information. The theft was discovered on September 16 and reported to HHS by HPE on November 7. According to a statement provided to media, a laptop bag stolen from an HPE employee’s car…
Open Database Exposes Millions of Job Seekers’ Personal Information
Joseph Cox reports: On Thursday, it emerged that an outsourcing company named Capegemini had left a database containing sensitive information on the open internet, exposing the names, contact details, resumes, and other personal information of potentially millions of people who used a global recruiting firm. The episode highlights the lingering problem of organizations accidentally leaving…
Customers for more than a hundred car dealerships across the US were put at risk because of shoddy database security
Zack Whittaker reports: If you bought a car in the last few years, there’s a good chance your personal information may have found its way to the open internet. Names, addresses, phone numbers and social security numbers for both customers and employees for over a hundred car dealerships have leaked online, all thanks to a…