I really don’t understand why businesses that have had customer data hacked at their hosting provider do not name the host or third party. Why shield them from bad publicity when their security failure led to the business taking a reputation hit? Here’s another example, this one from Nite Ize, who was notified of a breach…
Category: Subcontractor
MD: IT specialist who hacked state databases sentenced
There’s a follow-up to a breach previously noted on PHIprivacy.net. AP reports: A Frederick man has been sentenced to six months in federal prison for stealing personal information of more than 11,000 intellectually and developmentally disabled people. Alexander Afonso, an information technology specialist, pleaded guilty to using another employee’s computer credentials to obtain the victims’ Social Security numbers and medical…
UK: Urgent investigation into breach of benefit claimants’ data
Tom Potter reports a breach involving Colchester Borough Council: An urgent probe has been launched into how the personal details of benefit claimants were disclosed to some Colchester householders. The borough council is investigating the breach of personal data during the delivery of housing benefit notification letters to residents last week. […] The council said…
FL: Sacred Heart Health System billing information hacked
Carlos Gieseken reports: The billing information of 14,000 Sacred Heart Health System patients was compromised recently when an employee email account of the healthcare provider’s third-party billing vendor was hacked. No medical records were breached, but hackers gained access to patient names, dates of service, dates of birth, diagnoses and procedures, total charges and physician…
Payroll Company Owner Sentenced for Stealing $1.2M in IRS Taxes from Small Businesses and Municipal Water Supply
Warren Hebert, 67, of Barrington, R.I., owner of Checkmaster Payroll Services, has been sentenced to 24 months in federal prison and ordered to pay $1.1 million in restitution to seven businesses and the Seekonk, Mass., Water District that he defrauded when he diverted federal payroll taxes he collected from them that were to have been…
Point-of-Sale Vendor NEXTEP Probes Breach
Brian Krebs reports: NEXTEP Systems, a Troy, Mich.-based vendor of point-of-sale solutions for restaurants, corporate cafeterias, casinos, airports and other food service venues, was recently notified by law enforcement that some of its customer locations have been compromised in a potentially wide-ranging credit card breach, KrebsOnSecurity has learned. The acknowledgement came in response to reports by sources in…