Benjamin Krause writes: VA OIG just reported that Palo Alto VA Health Care System unlawfully gave patient data to a private IT company despite employees not having cleared background checks. The watchdog investigated allegations that the Palo Alto VA informatics chief entered into an illegal agreement with a health care company called Kyron. VA OIG confirmed allegations…
Category: Subcontractor
CA: Data breach involves Big Blue Bus customers
The Santa Monica Daily Press reports: The Big Blue Bus is alerting customers of a potential data breach related to the NextBus program. Officials were notified on Sept. 25 of a data security incident at NextBus, the company that BBB works with in order to make predictive real-time bus arrival information available to customers. BBB…
OCR “actively working” on Systema Software breach
Chris Vickery, who discovered the Systema Software leak, informs DataBreaches.net that he filed a complaint with HHS/OCR about the leak. Of note, and in response to an inquiry he sent on September 17 asking about the status of his complaint, OCR responded today: We are aware of this case and are actively working on it. …
MI: Mental health patients’ insurance information in stolen courier’s car
Shandra Martinez reports: A Wyoming medical billing firm is trying to contact patients of one its clients that a vehicle theft could result in a data breach of customer information. Insurance Data Services, at 1161 58th St. in Wyoming, says a West Michigan Delivery Service courier car delivering mailings for a client was stolen Sept….
Ca: Some Rogers Communications’ customer data stolen by former contractor’s employee
Morgan Modjeski reports that Rogers Communications is notifying 226 customers that a former employee of a contractor had stolen their personal information. Rogers reportedly only learned of the breach when York Regional Police notified them that in the course of an investigation, they had found customers’ telephone numbers, full names, credit card information and even Social Insurance…
More details emerge on Systema Software data leak (update1)
On September 9, Chris Vickery (previously referred to as “TE” in earlier coverage) notified the KDHE that what appeared to be the entire Kansas State Self Insurance Fund SIMS database was exposed online, as were databases from other agencies and organizations. KDHE immediately notified Systema Software, who promptly secured the leaking files. Vickery also contacted DataBreaches.net, who reported on the leak and the…