Stephen DiBenedetto reports: Medical bills detailing “limited” personal information of 3,000 Centegra Health System patients recently were sent to the wrong addresses because of a mailroom error at a third-party contractor, a Centegra spokeswoman said. The mailing error happened Nov. 2 at MedAssets, a Georgia-based vendor Centegra contracts, during routine maintenance. A setting on automatic…
Category: Subcontractor
Follow-Up: Company involved in NSUH-LIJ breach folded
In June, this site covered a breach affecting approximately 18,000 patients of North Shore-Long Island Jewish Health System. Unencrypted patient data, including SSN and clinical information, had been on five laptops stolen from Global Care Delivery, a Texas-based firm that contracted with North Shore-LIJ to process and collect payments owed by insurers to the hospital system. At the…
Oh, so THAT’s what happened, Sunday edition
Sometimes I see breaches on HHS’s public breach tool but can find no web site for the covered entity or any substitute notice online. Such was the case with an entry for “Daniel A. Sheldon, M.D., P.A.,” an orthopaedic surgeon in Florida. The breach tool entry indicated that on September 16, 2015, the doctor had…
Fashion to Figure notifying customers of payment card compromise
Fashion to Figure (B. Lane, Inc.) is notifying customers of a breach involving malware inserted on their web host’s server. The malware was reportedly inserted on the unnamed host’s server on May 19, but Fashion to Figure did not realize it until October 16, when they started investigating why a web page was loading slowly. Potentially compromised…
Experian Posts $20M Charge Related to T-Mobile Data Breach
Diana Goovaerts reports: In its earnings report for the six months ended September 30, 2015, Experian posted a charge of $20 million stemming from its response to an October security breach that exposed the data of millions of T-Mobile customers. According to the report, the “one-off costs” came from Experian’s response to the hack, which included notifying impacted individuals,…
Ca: WorkSafeNB apologizes to 3,022 injured workers for privacy breach
CBC reports that too much information sharing went on when WorkSafeNB provided data to to Corporate Research Associates. The breach was not the polling firm’s fault, but WorkSafeNB’s, for providing details the contractor did not need and should not have been sent. WorkSafeNB has sent out more than three thousand letters of apology over a serious…