Lorenzo Franceschi-Bicchierai has an update on a recent story: A company that sells cellphone spyware to consumers left 95,000 images and more than 25,000 audio recordings on a server accessible to anyone on the internet for weeks. The sensitive data was so easy to access, that Motherboard couldn’t even name the spyware company in its…
Category: U.S.
Butler County employee suspended after emailing spreadsheet with personal information
Denise G. Callahan reports: The Butler County commissioners approved a two-day, unpaid suspension for an employee who inadvertently sent out an email with wellness information regarding the county’s health insurance, which might have violated HIPAA laws. Shawna Smith, the county’s wellness coordinator, sent out an email in September with a spreadsheet that included hidden columns…
Class Action Lawsuit Filed Over UConn Health Phishing Attack
HIPAA Journal reports a development in the aftermath of a UConn Health phishing attack that was first disclosed last month: A class action lawsuit has been proposed which seeks to recover damages for patients whose protected health information (PHI) was exposed in the UConn Health phishing attack that was discovered on December 24, 2018. The…
The National Board of Examiners in Optometry to Pay $3.25M Settlement in Data Breach Case
There’s a significant update to some data breach litigation that was revived last June. The American Optometric Association reports: The National Board of Examiners in Optometry (NBEO) will allot $3.25 million in a cash settlement fund to compensate some 61,000 victims of an alleged data breach that gripped the profession in 2016. In a court…
St. Louis Community College’s data breach has students concerned
Jasmine Payoute reports: A data breach at St. Louis Community College has one student searching for some accountability after they released the personal information of nearly 4,000 students. “It’s just very frustrating of how our information was given out twice, I mean where’s the security at,” said a student who asked not to be identified….
Verity Medical Foundation discloses third incident involving access to employees’ email accounts
Oh dear. When I saw Verity Medical Foundation listed on HHS’s public breach tool this month with more than 14,000 patients impacted, I thought it might be just an updated report for the two incidents that they had disclosed in January. But no. It appears that Verity had yet another breach. Like the first two,…