Sophie Nieto-Munoz reports: ShopRite and its parent company, Wakefern Food Corporation, will pay $235,000 after two supermarkets threw away electronic devices exposing thousands of customers’ medical information, Attorney General Gurbir Grewal announced Monday. The company will also have to improve its data security after they failed to protect the information of more than 9,700 pharmaceutical customers…
Category: U.S.
“We take your privacy seriously,” Saturday edition
As part of my research collaboration with Protenus for their Breach Barometer reports, I spend time every week reaching out to entities to ask them for details about incidents if I cannot find any notice on their site or a state attorney general’s site. Most entities respond with the requested information or a copy of…
New Haven Health Department failed to terminate former employee’s access to protected health information
The City of New Haven, Connecticut (New Haven) has agreed to pay $202,400 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services (HHS) and to implement a corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act (HIPAA) Privacy and Security Rules. The…
NH: Info may be stolen in Salem computer attack
Breanna Edelstein reports: Town officials still offline after a cybersecurity breach last week recently learned attackers were able to access internal systems, according to Town Manager Chris Dillon. At about 3:15 a.m. on Oct. 21, the town became the victim of “a sophisticated cybersecurity attack involving ransomware,” Dillon said in a statement. Read more on…
Wisconsin Republican Party says hackers stole $2.3M from Trump reelection account
Scott Bauer reports: Hackers stole $2.3 million from the Wisconsin Republican Party’s account that was being used to help reelect President Donald Trump in the key battleground state, the party’s chairman told The Associated Press on Thursday. Read more on Madison.com
Statement from Universal Health Services
Updated Thursday, October 29, 2020, 4:30 pm ET — As previously disclosed on September 29, 2020, we experienced an information technology security incident in the early morning hours of September 27, 2020. As a result of this cyberattack, we suspended user access to our information technology applications related to operations located in the United States. While…