Despite having been notified almost one month ago by Chris Vickery and/or Systema Software, some entities whose databases were exposed on AWS by Systema Software still do not appear to have issued public statements about the incident. Nor have I seen any reports appearing on HHS’s public breach tool. But in a statement posted on its…
Category: Subcontractor
Major Patient Privacy Breach Alleged At Palo Alto VA
Benjamin Krause writes: VA OIG just reported that Palo Alto VA Health Care System unlawfully gave patient data to a private IT company despite employees not having cleared background checks. The watchdog investigated allegations that the Palo Alto VA informatics chief entered into an illegal agreement with a health care company called Kyron. VA OIG confirmed allegations…
CA: Data breach involves Big Blue Bus customers
The Santa Monica Daily Press reports: The Big Blue Bus is alerting customers of a potential data breach related to the NextBus program. Officials were notified on Sept. 25 of a data security incident at NextBus, the company that BBB works with in order to make predictive real-time bus arrival information available to customers. BBB…
OCR “actively working” on Systema Software breach
Chris Vickery, who discovered the Systema Software leak, informs DataBreaches.net that he filed a complaint with HHS/OCR about the leak. Of note, and in response to an inquiry he sent on September 17 asking about the status of his complaint, OCR responded today: We are aware of this case and are actively working on it. …
MI: Mental health patients’ insurance information in stolen courier’s car
Shandra Martinez reports: A Wyoming medical billing firm is trying to contact patients of one its clients that a vehicle theft could result in a data breach of customer information. Insurance Data Services, at 1161 58th St. in Wyoming, says a West Michigan Delivery Service courier car delivering mailings for a client was stolen Sept….
Ca: Some Rogers Communications’ customer data stolen by former contractor’s employee
Morgan Modjeski reports that Rogers Communications is notifying 226 customers that a former employee of a contractor had stolen their personal information. Rogers reportedly only learned of the breach when York Regional Police notified them that in the course of an investigation, they had found customers’ telephone numbers, full names, credit card information and even Social Insurance…