How perfect is this cartoon, provided by privacy scholar and TeachPrivacy founder Dan Solove? See more on TeachPrivacy, where you can also find information on the many privacy-related courses TeachPrivacy offers and the upcoming privacy and security conferences that Dan organizes. And if you’re going to be at the International Privacy&Security Forum in D.C. April…
Category: U.S.
Nigerian citizen sentenced in phishing scheme that targeted Groton schools
The Day reports: A Nigerian citizen who was living in Smyrna, Ga., was sentenced Monday by U.S. District Judge Jeffrey A. Meyer in New Haven to approximately 10 months of imprisonment, time he had already served, for his role in a scheme to obtain the personal identifying information of school employees in Groton and elsewhere. Olukayode Ibrahim Lawal,…
Columbia Surgical Specialists of Spokane reports incident affecting 400,000 patients
On February 18, 2019, Columbia Surgical Specialists of Spokane reported a breach an incident to HHS. The incident, which appears on HHS’s public breach tool as a Hacking/IT Incident involving information on their network server, reportedly affected 400,000 patients. That’s a large breach for the healthcare sector, and yet I’ve seen no press releases in…
Rush University notifies 45,000 patients after discovering insider wrongdoing at claims processing vendor
Last month, Rush University Hospital notified HHS of a breach that they reportedly discovered in December. The breach, affecting 908 patients, was coded as an Unauthorized Access/Disclosure incident with data located in paper/film format. At the time, Becker’s Spine Review reported that the incident was a mailing mix-up: According to the letter sent to affected patients,…
More than 5 months after ransomware incident, Wolverine Solutions Group still notifying more than 700 companies and 1.2 million patients
More than 5 months after a ransomware incident, Wolverine Solutions Group is still in the process of notifying more than 700 companies and 1.2 million patients. Should they even have to, or has the government imposed too burdensome a responsibility on entities that experience attacks to individually notify patients when there is no evidence of…
Florida Keys Community College Provides Notice of Data Security Incident
From their press release. KEY WEST, Fla., Feb. 27, 2019 /PRNewswire/ — Florida Keys Community College (the “College”) is taking action after discovering that it became the target of a phishing email campaign that compromised several employee email account credentials. What Happened? On October 19, 2018 Florida Keys Community College (the “College”) learned of suspicious activity…