Kurt Erikson reports: A company offering virtual learning programs in Missouri “inadvertently” released student information as it worked the Capitol halls earlier this year in a bid to make it easier to expand its offerings. [,,,] In an Aug. 20 letter, Christopher Neale, assistant commissioner of the Missouri Department of Elementary and Secondary Education, said…
Category: Subcontractor
IA: OCSD, KCSD report data security breach of student info at Medicaid billing service
Emily Hawk reports on what has the makings of a significant breach: A contractor used by the Oskaloosa Community School District and the Knoxville Community School District has experienced a data security incident that resulted in a breach of personal student information. Timberline Billing Services, Inc. provides Medicaid billing and reimbursement services to both districts,…
OSF Healthcare notifying patients of the Blackbaud incident
OSF HealthCare System (“OSF”) is mailing letters to its patients advising them of the Blackbaud ransomware incident that has already impacted more than 10 million other patients. OSF’s statement doesn’t reveal when Blackbaud first notified them, but they report that On August 20, 2020, OSF’s investigation and review of the Blackbaud database involved in the…
Misconfigured cloud storage bucket exposed Pfizer drug safety-related reports — researchers
For lo, these many years, DataBreaches.net has been reminding everyone that not all leaks or breaches involving medical or sensitive personal health information are covered by HIPAA. Today’s story is a reminder of that. vpnMentor recently contacted DataBreaches.net about a leak their research team, led by Noam Rotem and Ran Locar, had discovered. The leak…
Ca: Western students alerted about security breach at exam monitor Proctortrack
Andrew Lupton reports: A security breach of Proctortrack, the software Western University uses to monitor student exams remotely, is adding new fuel to a debate raging on campus over privacy concerns about the program. Proctortrack allows students to be monitored to prevent cheating while they take exams at home using their own computers. The program…
KY: Breach of city contractor e-mail put some city workers info at risk
Steve Rogers reports: Some current and former Lexington city employees’ personal information was put at risk when a third-party contractor’s e-mail server was hacked in July. The city was notified on Sept. 28 of the security incident by Metaformers Inc., the third-party contractor working on city technology projects, the city said in a release. Read…