Edward Fitzpatrick reports: Attorney General Peter F. Neronha’s office has issued administrative subpoenas to the Rhode Island Public Transit Authority and UnitedHealthcare over a data breach that compromised the personal information of 22,000 people. The subpoenas, or civil investigative demand letters, say the attorney general’s office was notified on Dec. 23 of a “significant information…
Category: U.S.
Security issue may have made some personal information vulnerable on WSDOT system
OLYMPIA – A vulnerability involving a Washington State Department of Transportation system may have exposed personal information stored in an internal database of about 2,200 people, and the agency is reaching out to help notify them of the incident. It is not known if anyone obtained the information for illegal use, and the vulnerability within…
Update: Pellissippi State notifies individuals of data breach
NOTE: This incident was reported to the Maine State Attorney General’s Office as affecting 206,000 individuals. Nice follow-up by Pellissippi State Community College in Tennessee to their initial breach disclosure in December. From their website yesterday: Pellissippi State Community College is sending out notifications today regarding a December 2021 data security incident. That incident may…
Your morning reminder that health data breaches are … everywhere (updated)
Every day, I compile data on breaches or leaks involving medical or health data. Many of them never appear on this blog at all. Others will appear on this blog many months before the entity ever discloses the breach to regulators or those impacted. Many of the incidents I compile will not attract a lot…
Inside Trickbot, Russia’s Notorious Ransomware Gang
Matt Burgess reports: WHEN THE PHONES and computer networks went down at Ridgeview Medical Center’s three hospitals on October 24, 2020, the medical group resorted to a Facebook post to warn its patients about the disruption. One local volunteer-run fire department said ambulances were being diverted to other hospitals; officials reported patients and staff were safe. The downtime at the Minnesota medical…
Scripps Breach Too California Heavy for Federal Courtroom
Samantha Hawkins reports: A proposed class action against Scripps Health over a 2021 data breach was thrown out of federal court Wednesday, when a Southern District of California judge said too many Californians meant it lacked jurisdiction. Surprised? I was. But Hawkins explains: But because most—96.3%—of the 144,011 individuals notified about the ransomware attack had…