Tim Saunders reports: More than 100 people who work for Randolph College in Lynchburg have encountered problems this year while trying to file their tax returns. That’s because their personal information was stolen in what appears to be a data breach. […] As of Monday 103 people who work for Randolph have reported a recent…
Category: Subcontractor
Lamar County School District: 28 employees’ personal information exposed in data breach (UPDATED)
Jacque Masse reports on another breach that is linked to Innovak: Some Lamar County School District employees’ had their personal information compromised after an employee portal experienced a data breach. According to Lamar County Superintendent Tess Smith, the district uses a company called INNOVAK that allows staff to access their pay stubs and W2s through the…
OptumRx notifying patients after laptop with PHI stolen from vendor’s unattended vehicle
Now what vendor was this? I don’t see anything in recent reports or on HHS’s public breach tool that would identify the vendor. From a notification template by OptumRx: We wanted to make you aware of a recent incident that may have affected some of your health information. On March 22, 2016, we were notified…
Escambia County School hit with payroll system security breach
Stephanie Nelson reports: The Escambia County School System is one of three in the state hit with a payroll accounting system security breach that allowed fraudulent tax returns to be filed in employee names. The systems, which include Alexander and Dothan city, use Innovak – a Spartanburg, S.C.-based provider platform for financials. Ongoing investigations at…
Val Verde alerting patients after data breach discovered
Val Verde Regional Medical Center recently discovered a security breach involving a small number of the facility’s overall patient population. On or about Aug. 9, 2015, an independent healthcare provider downloaded unsecured protected health information and emailed it to a personal account without encryption protection. In addition, the independent contractor was not authorized to access…
Vulnerabilities in a Third-Party Healthcare Payment Processor
Randy Westergren looked into Christiana Care’s online payment portal, which involves a third party payment processor developed by BYL Companies, LLC. What Randy found was very concerning, and he promptly notified BYL of his findings. You can read his write-up of it all on his site. So here’s the thing: how many people may have actually exploited the vulnerability…