From the U.S. Department of Health and Human Services, this press release announcing that U. of Washington Medicine has settled charges it potentially violated HIPAA’s Security Rule. The investigation stemmed from an incident reported on this site in November, 2013. The University of Washington Medicine (UWM) has agreed to settle charges that it potentially violated the…
Category: U.S.
MacKeeper leak of 13M customers’ data acknowledged by Kromtech
Earlier today, I had mentioned a leak that Chris Vickery uncovered that involved over 13 million customers or users of MacKeeper, but now a bunch of reporters have reported on that leak in more depth. To their credit, Kromtech issued a disclosure statement about the leak, which was posted on MacKeeper: MacKeeper Security Advisory Kromtech is…
Two apps with health info found leaking: researcher. Part 1: iFit
Apps that collect and store health-related information are often not covered by HIPAA, but a breach involving the data they collect could be problematic. Today, I report on two leaking apps containing health information. Both of these leaks were reported to DataBreaches.net by researcher Chris Vickery. Part 1, below, is on iFit’s data leak. Part 2 will report on…
Hacker Claims to Have Taken Sensitive Data from City of Providence, Rhode Island
Uh oh. GoLocalProv reports: The City of Providence’s website has been hacked and the hacker has posted an ominous message claiming to have control of sensitive data and that the data is for sale. It is unknown what data, if any, is under the control of the City of Providence, but as three years ago the City…
Pittsburgh-area counselor stole $600K through alleged insurance fraud scheme
HARRISBURG — Pennsylvania Attorney General Kathleen G. Kane’s office announced the arrest of a Pittsburgh-area woman charged with illicitly obtaining more than $600,000 through an alleged insurance fraud scheme. The arrest was announced Wednesday. The charges against Lisa A. Wally, 33, are the result of an investigation by the Office of Attorney General’s Insurance Fraud…
Former Employee Of Global Financial Services Company Charged With Unauthorized Access Of Supervisor’s Email Account On Approximately 100 Occasions
Another CFAA case. Although the victim company is not named, the defendant’s LinkedIn profile indicates that he was employed at Western Asset Management from March 2007 – March 2011. How he was able to access his former supervisor’s email account years after he left their employ is not addressed in the press release, but raises questions as to whether…