From their notification: NEWARK, NEW JERSEY – January 18, 2019 – Integrity House has become aware of a potential data security incident that may have resulted in unauthorized access to personal information, including Social Security numbers and limited health information. Although at this time there is no evidence of any attempted or actual misuse of…
Category: U.S.
Verity Health System of California, Inc. and Verity Medical Foundation Notify Individuals and Regulatory Bodies of Data Security Incident
From their public notification: [El Segundo, CA, January 25, 2019] – Although there is no evidence of the unauthorized access or use of individual health or personal information, Verity Health System of California, Inc. and Verity Medical Foundation (collectively “Verity”) are notifying potentially affected individuals that some of their personal information may have been accessed…
Judge Denies Yahoo Privacy Data Breach Settlement
Matthew Renda reports: A federal judge denied approval of a settlement in the Yahoo data breach class action on Monday, saying Yahoo’s refusal to disclose the total amount to be paid out to those affected by the largest data breach in history renders it insufficient. “The proposed notice does not disclose the costs of credit…
CO: Critical Care, Pulmonary & Sleep Associates notifies almost 24,000 patients after hack of employee email accounts
Critical Care, Pulmonary & Sleep Associates in Colorado has notified 23,377 patients of a privacy incident. Their on-site notice offers a useful reminder that while bad actors may be seeking to engage in financial theft or fraud, when files with ePHI are connected to employee email accounts, patients and HHS may wind up needing to be…
GA: Mount Zion student pleads not guilty to computer hacking to avoid homework
Tony Reid reports the update to a story previously noted on this site: A Mount Zion High School student is pleading not guilty to three charges of tampering with computers after police said he shut down his school district’s computer network while trying to sabotage a homework assignment. Gage C. Hart, 18, appeared in Macon…
United States: National Futures Association Adopts Notification Requirement For Certain Cybersecurity Incidents
Jeffrey P. Taft and Matthew Bisanz of Mayer Brown write: On January 7, 2019, the National Futures Association (“NFA”) announced that it had adopted amendments to its information security requirements that include a cybersecurity incident notification obligation.1 As discussed below, the NFA’s amendments represent the continued maturation of information security in the US financial services…