From OCR, this alert: It has come to OCR’s attention that an individual posing as an OCR Investigator has contacted HIPAA covered entities in an attempt to obtain protected health information (PHI). The individual identifies themselves on the telephone as an OCR investigator, but does not provide an OCR complaint transaction number or any other…
Category: U.S.
Marriott data breach exposes personal data of 5.2 million guests
Keumars Afifi-Sabet reports: Marriott has informed 5.2 million guests that their personal details were inappropriately accessed in a possible data breach. Contacts details, loyalty account information, company, gender, birthday, partnerships and affiliations and room preferences were among guests’ details accessed between mid-January and February 2020. Read more on ITPro.
First-Ever CCPA Cause of Action Filed in a Federal Court, but Is This Class Claim Short-Lived?
Cynthia J. Larose and Natalie Prescott of Mintz discuss a lawsuit previously noted on this site: Fuentes v. Sunshine Behavioral Health Group, LLC. The lawsuit followed a data leak of PHI due to a misconfiguration of a database. The leak was first reported by DataBreaches.net who had alerted the entity to their leak. I’m going…
Medical and military contractor Kimchuk hit by data-stealing DoppelPayme ransomware
Zack Whittaker reports: Kimchuk, a medical and military electronics maker, has been hit by data-stealing ransomware, TechCrunch has learned. The Danbury, Conn.-based manufacturer, which builds electronics for medical equipment, telecoms systems and energy grids, also makes nuclear modules for the Navy, work that often requires security clearance. Read more on TechCrunch.
American HomePatient Data Breach Class Action Settlement
Top Class Actions reports: American HomePatient has agreed to pay $1 million to resolve claims that they failed to protect patient data in a burglary incident. The settlement benefits current or former patients and customers of American HomePatient Inc. and Lincare Holdings Inc. whose personal identifying information was stored on the unencrypted hard drives stolen…
Scammers are using the promise of phony COVID-19 test kits to get Tricare recipient personal private info
We know that there is an increase in scamming trying to capitalize on the COVID-19 pandemic. The FBI has issued an alert, the DOJ has taken enforcement action against one company already, and the FDA and FTC have warned companies. Here’s one scam specifically targeting military members who have Tricare health insurance. Howard Altman reports:…