Insurance carriers, third party administrators (TPAs), and self-insureds had claims data exposed when a cloud-hosted claims management service inadvertently left their databases and files unprotected on a public server. Another week, another infosecurity failure that exposed oodles of personal information. This time, it’s a leak that not only exposed insurance claims data, but allegedly included internal documents that reveal how…
Category: U.S.
NC: Charlotte-Mecklenburg Schools notifies 7,600 job applicants of privacy breach
Adam Bell reports: Charlotte-Mecklenburg Schools has notified about 7,600 job applicants that their personal information, including Social Security numbers, was shared with an outside contractor without their consent. […] In a statement Tuesday morning, CMS said that one of its employees entered into an agreement with a vendor prior to obtaining proper authorization, and that resulted…
Glidewell notifies employees after security incident
James R. Glidewell, Dental Ceramics, Inc. and its subsidiaries (“Glidewell”) are notifying employees of a security incident. According to a notification letter submitted to the California Attorney General’s Office, Glidewell learned that “an unauthorized individual may have taken certain documents and data maintained and/or owned by Glidewell, without Glidewell’s authorization.” The data theft occurred on February…
Former Tampa PD employee indicted on fraud charges, misuse of police database
Elaine Silvestrini reports that Tonia Bright, a former Tampa Police civilian employee, has been indicted on charges that involve her misusing police databases to support a fraud scheme. Bright had retired last year. A search warrant affidavit filed last month said detectives were told that Bright’s friend, Rita Girven, drove around Tampa looking for older…
U.S. prosecutors in talks with second suspect tied to JPMorgan hack
Nate Raymond reports: U.S. prosecutors have disclosed they are in discussions to resolve a case against a second Florida man linked to a massive data breach at JPMorgan Chase & Co, after saying they are engaged in similar talks with his co-defendant. In a court filing made public Friday in Manhattan federal court, a prosecutor…
Medical Informatics Engineering, Concentra, Employers, Data Sharing, And Privacy
Over on I’ve Been Mugged, George Jenkins describes what he learned when he and his wife really pursued the question of how Medical Informatics Engineering had wound up with his wife’s personal information caught up in their breach. It’s a long – but important – read, as it highlights routine business practices that may come…