CyberNews recently published a post about an alleged breach of Humana.com. In their reporting, they repeated a claim on Raid Forums by “Bandido Revolution” that data they were posting on RaidForums “…was acquired from US insurance giant Humana and includes detailed medical records of the company’s health plan members dating back to 2019.” Elsewhere in…
Category: U.S.
MN: Five in trouble with the state for unauthorized access of driver’s information
Tim Harlow reports: The deputy registrar’s office in Fairfax, Minn., is closed and its two employees are off the job after they accessed drivers’ motor vehicle records without an authorized purpose, according to the state Department of Public Safety. In an unrelated case in North Mankato, three employees at a deputy registrar’s office were stripped…
Hospital worker stole identities of dying California patients in COVID scam, feds say
Helen Wegner reports: A hospital employee is accused of sharing patient identities with scammers who then fraudulently tried to obtain their COVID-19 unemployment benefits, according to court documents unsealed this week. Matthew Lombardo worked at the Scripps Health hospital in San Diego as a patient service representative where he obtained and verified patient information, including…
Connecticut Enacts Safe Harbor From Punitive Damages In Data Breach Cases
Jason Gavejian and Joseph Lazzarotti of JacksonLewis write: Effective October 1, 2021, Connecticut becomes the third state with a data breach litigation “safe harbor” law (Public Act No. 21-119), joining Utah and Ohio. In short, the Connecticut law prohibits courts in the state from assessing punitive damages in data breach litigation against a covered defendant…
UPMC Settles 2014 Data Breach Litigation for $2.65 Million
HIPAA Journal reports that the University of Pittsburgh Medical Center (UPMC) has agreed to a $2.65 million settlement to resolve a data breach lawsuit filed by employees affected by a February 2014 data breach that resulted in many employees becoming victims of tax refund fraud. Read about the terms of the settlement on HIPAA Journal.
CA: Threat actors dump tens of thousands of driver’s license images and several thousand credit reports for customers of Walter’s Automotive Group
Credit reports for a few thousand customers of Audi Ontario and Porsche Ontario dealerships were dumped by ransomware threat actors who claim they locked Walter’s Automotive Group and exfiltrated data, but Walter’s would not respond to them. More than 22,000 driver’s license images were also in the data dump. If you bought an Audi or…