Helen Wegner reports: A hospital employee is accused of sharing patient identities with scammers who then fraudulently tried to obtain their COVID-19 unemployment benefits, according to court documents unsealed this week. Matthew Lombardo worked at the Scripps Health hospital in San Diego as a patient service representative where he obtained and verified patient information, including…
Category: U.S.
Connecticut Enacts Safe Harbor From Punitive Damages In Data Breach Cases
Jason Gavejian and Joseph Lazzarotti of JacksonLewis write: Effective October 1, 2021, Connecticut becomes the third state with a data breach litigation “safe harbor” law (Public Act No. 21-119), joining Utah and Ohio. In short, the Connecticut law prohibits courts in the state from assessing punitive damages in data breach litigation against a covered defendant…
UPMC Settles 2014 Data Breach Litigation for $2.65 Million
HIPAA Journal reports that the University of Pittsburgh Medical Center (UPMC) has agreed to a $2.65 million settlement to resolve a data breach lawsuit filed by employees affected by a February 2014 data breach that resulted in many employees becoming victims of tax refund fraud. Read about the terms of the settlement on HIPAA Journal.
CA: Threat actors dump tens of thousands of driver’s license images and several thousand credit reports for customers of Walter’s Automotive Group
Credit reports for a few thousand customers of Audi Ontario and Porsche Ontario dealerships were dumped by ransomware threat actors who claim they locked Walter’s Automotive Group and exfiltrated data, but Walter’s would not respond to them. More than 22,000 driver’s license images were also in the data dump. If you bought an Audi or…
Over 80 US Municipalities’ Sensitive Information, Including Resident’s Personal Data, Left Vulnerable in Massive Data Breach
I’ve been cutting down on the number of leaks I report that just seem like attempts to get publicity for firms. But this one affects government, so I am linking to it. WizCase’s team of ethical hackers, led by Ata Hakçıl, has found a major breach exposing a number of US cities, all of them using…
NC: University of North Carolina at Chapel Hill School of Medicine and University of North Carolina Hospitals notifying some patients of breach
From a press release: On May 20, 2021, University of North Carolina at Chapel Hill School of Medicine (SOM) and University of North Carolina Hospitals learned that an unauthorized person may have gained access to a single SOM faculty member’s email account. This SOM faculty member provides clinical services at UNC Hospitals. SOM and UNC…