Laura Gutschke reports: Hendrick Health System on Friday began notifying patients that some identifying information may have been compromised during a network security breach identified Nov. 20. An investigation determined that patient information may have been accessible between Oct. 10 and Nov. 9, the release said, including patient names, Social Security numbers, demographic and other limited…
Category: U.S.
Wisconsin Medicaid information accessed by unauthorized individual
Devin Willems reports: Gainwell Technologies announced that someone may have gained unauthorized access to some participants’ information in Wisconsin’s Medicaid program. According to a release, an unauthorized individual gained access to an account starting on Oct. 29, 2020, that may have exposed the names, member identification numbers and billing codes for services received of some…
Cybercriminals are Bypassing Multi-factor Authentication to Access Organisation’s Cloud Services
Graham Cluley writes: The US Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning to companies to better protect their cloud-based accounts after several recent successful attacks. According to an advisory published by CISA, an increasing number of attacks have succeeded as more employees have begun to work remotely with a variety…
Hy-Vee agrees to settle the class action lawsuit over payment card data breach
In August, 2019, Hy-Vee announced that it was investigating a payment card breach affecting customers who had used some of their fuel pumps, drive-thru coffee shops, and restaurants. Three days later, Brian Krebs reported: On Tuesday of this week, one of the more popular underground stores peddling credit and debit card data stolen from hacked…
Toledo Public Schools Seeking Individuals Who May Not Have Received Notice of Security Breach
Public Notice: January 14, 2021 As previously reported on this website and in the news media, Toledo Public Schools experienced a security incident in September which later resulted in the potential access, viewing or removal of personal information for some current and former TPS students and employees. Such personal information may include, but is not necessarily limited…
Excellus to pay $5 million to settle charges stemming from breach that impacted 9.3 million
Excellus Health Plan, Inc. has agreed to pay $5.1 million to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and to implement a corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules related to a breach…