Kristen Eichensehr writes: Last Friday was a big day in cybersecurity news. OPM announced that, in addition to the compromise of the personnel information of federal employees revealed on June 4, Chinese hackers also breached a database containing millions of security clearance forms. Meanwhile, on the other side of the Potomac, the Department of Defense…
Category: U.S.
Volcano Corporation notifies employees after e-mail breach
Add San Diego-based Volcano Corporation to your list of firms reporting breaches involving e-mail attachment errors. Volcano Corporation reports that the error was made – and detected – on May 21, when a spreadsheet was inadvertently attached to an e-mail sent to some employees about their retirement account. The spreadsheet included employees’ names, email addresses…
Blue Shield of California notifies some members of exposure breach following software update
Software updates are an all-too-common source of breaches. Here’s another one, this involving Blue Shield of California. From their notification to the California Attorney General’s Office: As the (unintended) result of a computer code update Blue Shield made to the website on May 9, three users who logged into their own website accounts simultaneously with…
NY: Metropolitan Hospital Center notifies almost 4,000 patients of breach
The NYC Health and Hospitals Corporation is providing some powerful reminders of the importance of auditing and monitoring employee emails. Last month, I noted that they had detected breaches involving patients at Bellevue Hospital and Jacobi Medical Center. On June 1, HHC notified HHS of yet another email-related breach, this one involving Metropolitan Hospital Center….
Shorter University data breach lawsuit advances
Oops – found this one sitting in drafts folder. I should have posted it two weeks ago. Law360 reports: A Georgia federal judge on Thursday trimmed breach of contract and negligent misrepresentation claims from a proposed putative class action over the theft of student medical data at a state university, but refused to let the…
Medical Informatics Engineering hacked; patient info involved
AP reports: A Fort Wayne medical software company is notifying patients of health care providers it serves that their private information might have been exposed when its networks were hacked, it said Wednesday. Medical Informatics Engineering said the attack on its main network and its NoMoreClipboard network began May 7 and wasn’t detected until May…