Brian Krebs reports: Welcome to Day 2 of Cybersecurity (Breach) Awareness Month! Today’s awareness lesson is brought to you by retail brokerage firm Scottrade Inc., which just disclosed a breach involving contact information and possibly Social Security numbers on 4.6 million customers. In an email sent today to customers, St. Louis-based Scottrade said it recently heard…
Category: U.S.
1,040 Sentara Heart Hospital patients notified of HIPAA breach
Elizabeth Simpson reports that a person or persons managed to steal two portable hard drives with PHI from two electrophysiology labs at Sentara Heart Hospital in August: The August theft of two portable hard drives from Sentara Heart Hospital’s electrophysiology labs led hospital officials to send letters about a security breach this week to 1,040 patients….
American Bankers Association notifies 6,400 to reset passwords after hack and data dump
So it seems that the American Bankers Association had a breach, although I didn’t see it any mainstream media reports. Marc Hochstein noted the breach in a column he wrote today: American Bankers Association separately said that email addresses and passwords used to make purchases or register for events through its online shopping cart had…
The complaint to FTC about Experian that accomplished… what?
Today, Experian disclosed another data breach. This one affected 15 million customers of T-Mobile USA, for whom Experian hosts consumer data used for credit checks for new accounts. In tweeting my frustration about this latest incident, @emptywheel suggested I post the complaint I filed with the FTC about Experian in 2012. After some thought, I’ve decided…
Experian’s servers hacked; 15 million T-Mobile USA customers affected (UPDATED)
There’s been another data breach involving Experian, it seems, although this one didn’t involve their credit reporting database. Instead, it involved data Experian houses for T-Mobile USA. In a letter to affected T-Mobile USA customers, Experian CEO Craig Boundy writes: I am writing to let you know of an incident that occurred involving T‐Mobile USA data housed…
Reports slam OCR’s poor oversight of HIPAA covered entities, breach followup efforts
If you follow HHS’s public breach tool and investigations closely, two reports from the Office of the Inspector General (OIG) finding lax oversight and insufficient follow-up will come as no surprise. Susan Hall of FierceHealthIT has a good recap: The former report was based on reviews of a statistical sample of privacy cases investigated by OCR between September…