Hannah Knowles reports that a breach involving a W-2 vendor has left employees in the education sector at risk of tax refund fraud. This time, it’s W-2 Express and Stanford University, although other clients of W-2 Express are also reportedly affected: At least 600 current and former Stanford employees are vulnerable to tax fraud following the illegitimate download…
Category: Subcontractor
More than 100 Randolph College employees report recent identity theft (Updated)
Tim Saunders reports: More than 100 people who work for Randolph College in Lynchburg have encountered problems this year while trying to file their tax returns. That’s because their personal information was stolen in what appears to be a data breach. […] As of Monday 103 people who work for Randolph have reported a recent…
Lamar County School District: 28 employees’ personal information exposed in data breach (UPDATED)
Jacque Masse reports on another breach that is linked to Innovak: Some Lamar County School District employees’ had their personal information compromised after an employee portal experienced a data breach. According to Lamar County Superintendent Tess Smith, the district uses a company called INNOVAK that allows staff to access their pay stubs and W2s through the…
OptumRx notifying patients after laptop with PHI stolen from vendor’s unattended vehicle
Now what vendor was this? I don’t see anything in recent reports or on HHS’s public breach tool that would identify the vendor. From a notification template by OptumRx: We wanted to make you aware of a recent incident that may have affected some of your health information. On March 22, 2016, we were notified…
Escambia County School hit with payroll system security breach
Stephanie Nelson reports: The Escambia County School System is one of three in the state hit with a payroll accounting system security breach that allowed fraudulent tax returns to be filed in employee names. The systems, which include Alexander and Dothan city, use Innovak – a Spartanburg, S.C.-based provider platform for financials. Ongoing investigations at…
Val Verde alerting patients after data breach discovered
Val Verde Regional Medical Center recently discovered a security breach involving a small number of the facility’s overall patient population. On or about Aug. 9, 2015, an independent healthcare provider downloaded unsecured protected health information and emailed it to a personal account without encryption protection. In addition, the independent contractor was not authorized to access…