UPMC is only one of “numerous” clients of NC-based Medical Management LLC that have reportedly been notified of data theft by a rogue employee. We’ll have to wait to learn who the other entities are. The following is a press release issued today by UPMC: Because of a data theft at an outside medical billing company,…
Category: Subcontractor
How the Washington Post was hijacked by the Syrian Electronic Army (again)
Graham Cluley reports: The Syrian Electronic Army appears to have successfully scalped another high profile media outlet, briefly hijacking the mobile version of the Washington Post website to display pop-up messages claiming that the media is not telling the truth. […] In this latest incident, as Motherboard reports, the hackers claim that they broke into systems belonging to Instart…
Oops – don’t forget to scrub those drivers license images!
On March 20, 2015, attorneys for the Central Dauphin School District in Pennsylvania notified the Maryland Attorney General’s Office of a breach involving visitors’ drivers license images. The district has a security system that involves scanning visitors’ drivers licenses when they enter the administration building. The laptop that stored those images, which was provided by…
FL: Bright House Cable work orders found trashed
Erik Sandoval reports that WKMG received a viewer tip about Bright House Cable customer information found behind Jaguar, Inc. Jaguar is a contractor for Bright House Cable in Altamonte Springs. The work orders exposed the names, addresses and other personal information of dozens of customers. Bright House provided a statement to WKMG: “Bright House…
Technical College of the Lowcountry notifies students whose SSN were exposed online by third party
On April 27, the Technical College of the Lowcountry in Beaufort, South Carolina, disclosed a breach involving high school students who had enrolled in a program they offered. Here is their first statement: On Thursday, April 23, 2015, the Technical College of the Lowcountry was notified of a possible data security incident involving the online publication…
Compass Group USA notifies consumers of NEXTEP-related payment card breach
As noted previously on this site, Point-Of-Sale (POS) vendor NEXTEP confirmed that they were investigating a potential breach after being notified by law enforcement that some of its customer locations had been compromised in a potentially wide-ranging credit card breach. Brian Krebs broke the story, here. Today, Compass Group USA submitted a copy of an April 16th notification…