A data breach involving a medical collection agency affected more than 200,000 patients who had used the firm’s online payment portal between September, 2018 and the beginning of March, 2019. At the end of February, Gemini Advisory analysts identified a Card Not Present (CNP) database that had been posted for sale in a dark web…
Category: U.S.
Cyber-breach at Greenwich school poses ‘clear and present danger’
Ken Borsuk reports: A recent cyber-breach at the Greenwich Public Schools was significant and presents a “clear and present danger” to the town, a member of the Board of Estimate and Taxation warned Thursday morning. […] Little information has been released about the breach. But Greenwich Police Lt. John Slusarz confirmed this week that there…
Vendor used by schools to register students for AP and PSAT exams left personal information of thousands students unsecured
A school contractor that provides online registration so students can sign up for AP and PSAT exams misconfigured their cloud storage, exposing students’ and parents’ personal information. A number of school districts or schools contract with a firm in Colorado called Total Registration, who, according to their web site, registered more than 525,000 students from…
Augustana Colleges reports a ransomware attack
Add Augustana College to the list of educational institutions getting hit by ransomware. You can read their notification here, although it’s not clear from the notice whether it was student data, employee data, or both that was on the affected server. Nor is it clear how many people had data on the server in question….
Lest we forget physical security, too
It’s easy to lose interest in low-tech data theft or compromise when we have topics like ransomware and extortion to consider. But physical security of paper records is still something that cannot be taken too casually, as this notice from Bloodworks Northwest reminds us. Was the document stolen or did it just get thrown out…
Spectrum Health Lakeland notifies patients after billing vendor breach
I’m not finding anything on their web site just yet, but Spectrum Health Lakeland has reportedly been notifying patients about a breach involving their billing provider, OS Inc. WSJM reports that the health system learned of the breach on March 8 after an OS employee’s email account containing patient information was accessed without authorization. The information…