John Counts reports: Some email accounts of University of Michigan students and staff have been compromised, according to an alert posted on the school’s public safety departmental website Thursday. The alert says that more than 150 people on the system have fallen victim to “phishing emails” this week. People who have clicked on the scam…
Category: U.S.
OK: Saint Francis Hospital Gift Shop Acts to Block Payment Card Security Incident
Saint Francis Health System (“Saint Francis”) takes seriously the privacy and confidentiality of the personal information provided to it by visitors to the Saint Francis Hospital gift shop. Regrettably, this notice is about an incident involving some of that information. On March 20, 2015, Saint Francis discovered that an unauthorized person remotely installed malware on the…
After breaches, higher-ed schools adopt two-factor authentication
Ann Bednarz reports: Payday didn’t go as planned on January 2, 2014, for some Boston University employees. On that day, about a dozen faculty members discovered their paychecks hadn’t been deposited into their bank accounts. Thieves had changed the victims’ direct deposit information and rerouted their pay. BU’s IT security team traced the attack to a phishing…
Eataly payment card breach spanned 3 months; NYC customers offered credit monitoring services
Eataly, the high-end Italian food market that announced a payment system breach provided additional details in an update: Eataly NY, LLC (“Eataly”) recently became aware of a personal information security incident possibly affecting certain individuals who made a payment card purchase at the Eataly NYC Retail Marketplace, located at 200 5th Avenue, New York, NY 10010 (the “NYC…
Healthcare Nonprofit Sues Whistleblowers for Confidentiality Breach
Brittany Malooly reports: A nationwide AIDS healthcare provider and several of its former employees are locked in a legal battle over who took more advantage of the patients. The former employees claim that the AIDS Healthcare Foundation used patients to defraud Medicaid and Medicare, while AHF claims its employees outed confidential patient information to the…
AR: Medical assistant pleads guilty to aggravated identity theft
Christopher R. Thyer, United States Attorney for the Eastern District of Arkansas, announced Wednesday that Mesha White, age 34, of Little Rock, appeared before United States District Court Judge Susan Webber Wright on June 3, 2015, and pled guilty to an indictment charging her with aggravated identity theft. In April 2014, a federal grand jury returned…