Benjamin Krause writes: VA OIG just reported that Palo Alto VA Health Care System unlawfully gave patient data to a private IT company despite employees not having cleared background checks. The watchdog investigated allegations that the Palo Alto VA informatics chief entered into an illegal agreement with a health care company called Kyron. VA OIG confirmed allegations…
Category: U.S.
Data breach lawsuit against former parent company of Flowers Hospital survives motion to dismiss
There’s a noteworthy update to a lawsuit against Triad of Alabama, the former parent company for Flowers Hospital, whose employee was convicted on both federal and state charges for stealing and trafficking in patient information for tax refund fraud. The breach and earlier developments in the lawsuit were covered on PHIprivacy.net. Today, Lance Griffin reports that the amended class…
NC: High school students charged with hacking into school computers
So simple a child could do it? Fox46 reports: Iredell County, NC – Seven high school students were charged in an Iredell County campus computer breach. On Tuesday, September 1, Iredell Statesville School System reported to the sheriff’s office they has been hacked. The school believed the suspects were students at the school. The ISS IT Department quickly…
Barrington Orthopedic Specialists, Ltd notifies patients after theft of equipment
Barrington Orthopedic Specials, Ltd in Illinois is notifying 1,009 patients following the theft of a laptop with protected health information. From their substitute notice on their web site: Barrington Orthopedic Specialists, Ltd. takes patient privacy very seriously, and it is important to us that you are made fully aware of a potential privacy issue. We have…
Trump International Hotel & Tower Las Vegas notifying customers that malware was present in payment card system for more than one year (UPDATE 1)
Norton Rose Fulbright, a law firm representing The Trump Hotel Collection, is sending out notifications to customers who used a payment card at Trump International Hotel & Tower Las Vegas between May 19, 2014, and June 2, 2015. They write: Although an independent forensic investigation has not conclusively determined that any particular customer’s payment card information was taken…
Hacker Exfocus Blamed For Knocking Rutgers University Offline With DDoS Attack, Even After Expensive Upgrade
Jeff Stone reports: Someone is tormenting Rutgers University. The New Jersey school announced on Monday it was fending off a distributed denial of service attack that crippled its Internet and Wi-Fi access. It’s just the latest cyberattack on a major U.S. research institution, and comes after a number of similar hacks against Rutgers, a school of approximately…