NYS Attorney General Letitia James announced a settlement: New York Attorney General Letitia James secured $200,000 from the law firm, Heidell, Pittoni, Murphy & Bach LLP (HPMB) for failing to protect New Yorkers’ personal and healthcare data. HPMB’s poor data security measures made it vulnerable to a 2021 data breach that compromised the private information of approximately…
Category: U.S.
No need to hack when 682,000 medical records are leaking, Monday edition
On March 15, DataBreaches was contacted by a researcher who had found a “bunch of medical docs.” The files included patient intake evaluations, laboratory results, medical records requests, insurance information forms, treatment or consultation notes, and other files you would expect to see in a patient’s records. The patients all appeared to be in Texas,…
Hackers attack Wisconsin court system computer network
Earlier this week, AP reported: Hackers have attacked the Wisconsin court system’s computer network, court officials said Thursday. A cyberattack began early this week, according to a statement from court officials. Network users may have experienced intermittent service or slower than usual response times from online services, court officials said. Asked when specifically the attack…
Cyber breach affects eastern NC postal service
Claire Curry reports from North Carolina: Some United States Postal Service workers in the eastern North Carolina and Jacksonville area are missing paychecks due to a cyber attack. The mail service is conducting an investigation, but employees are unhappy with the outcome so far, they said. Larisa Covington, from Jacksonville, said in February she was…
Warning to Seniors: Personal Data of 254K Medicare Beneficiaries at Risk After Breach
Casey Harper reports that Congress finally got around to questioning CMS about a ransomware attack on Healthcare Management Solutions, a CMS subcontractor. The attack involved Medicare and Medicaid numbers. Hundreds of thousands of Americans’ personal information is at risk after Medicare’s data was breached. Now, lawmakers want answers. House Committee on Oversight and Accountability Chairman…
Kids tech camp iD Tech still silent weeks after data breach
There’s an important update of April 20, 2023 from NJCCIC: iD Tech, an online children’s academy that offers a variety of STEM courses, suffered a data breach in February, and nearly one million records were subsequently posted to a popular dark web hacking forum. Compromised data includes 415,000 unique email addresses, names, dates of birth, and plaintext passwords. While…