No surprise here…. ABC6 in Ohio reports: A class-action lawsuit has been filed in the Cuyahoga County Court of Common Pleas, alleging Deloitte—the contractor the Ohio Department of Job and Family Services (ODJFS) hired to create and manage the new Pandemic Unemployment Assistance system—acted “negligently and recklessly,” leading to last week’s data leak. Read more on…
Category: Subcontractor
Coronavirus: Serco shares email addresses of hundreds of contact tracers in ‘privacy breach’
Matt Mathers reports: E-mail addresses of 300 contact tracers have been shared accidentally by Serco in what could be a breach of data protection rules. The government is using the outsourcing firm to help with its tracing strategy aimed at monitoring Covid-19 cases. The company has been training people to track cases of coronavirus in the UK and has so far…
Aeries Student Information System discloses breach (with updates)
Aeries Software recently announced a data breach. I didn’t see it, but a reader kindly stuck it under my cybernose today so that I could share it with you. The software firm’s notice of April 27 applies to hosted customers of their Aeries Student Information System. From their notice: What Happened? In late November 2019,…
LabCorp Board Sued in Delaware Over Billing Vendor Data Breaches
Mike Leonard reports: LabCorp’s board and top executives were hit with a Delaware lawsuit blaming them for investor losses stemming from two massive data breaches by a billing vendor that exposed the personal information of millions of patients. The derivative suit targets the medical testing giant’s directors, CEO, chief financial officer, and chief information officer. Read…
Massive & Unprecedented Security Breach Takes Usenet Providers Offline
Andy writes: A massive security breach has taken at least one major Usenet provider offline. UseNext says that a “security hole in a partner company” could have revealed names and bank account information, exposing customers to fraud and identity theft. The precise nature of the breach isn’t clear but reports that a Usenet client has…
(UPDATE 2 ): MO: Poplar Bluff Regional Medical Center notifying patients after tornado hits secure records service provider
I read relatively few reports of breaches due to weather-related events, floods, or fires, but when I do see them, I try to post them. This one involves a business associate that provides secure records services. A tornado struck their building in Tennessee on March 3. The disaster impacted patients in Missouri. As Poplar Bluff…