KSTP reports: The Minnesota Department of Human Services were victims of a phishing email scam, where someone had the ability to access the information of approximately 21,000 individuals who interacted with the department. DHS confirmed the potential breach Thursday in a statement. DHS sent out a letter dated Tuesday to those individuals whose information may…
Category: U.S.
Tech worker in Central Pennsylvania accused of stealing customers’ nude photos
Adam Hermann reports: A 23-year-old tech employee from York, Pennsylvania, is accused of stealing nude photos from customers’ cellphones. Cristian Adonis Santiago, 23, allegedly sent the personal photos to his own email account while working on customers’ phones in the store at an authorized retailer for Verizon Wireless, according to York Area Regional Police. Read…
Rebound Orthopedics & Neurosurgery reports data breach
CISOMAG reports: The officials at Rebound Orthopedics & Neurosurgery stated that they’ve fallen victim to a major data theft that exposed its customers’ personal data, including Social Security numbers and limited health information. The Vancouver-based diagnosis and treatment services company stated around 2,800 of its patients and employees may have been affected by the incident….
Two years after ‘trauma’ of hack, DNC builds a tech team with a veteran bench
Tim Johnson reports: The digital operations team at the Democratic National Committee hit some dark days after Russian hackers mauled their networks in 2016, hijacking dozens of computers and pilfering tens of thousands of emails to hand over to WikiLeaks and onto the internet. Remnants of that digital bruising linger. “I feel like everyone’s still…
MedCall Advisors suffers second data leak in less than one month
A few weeks ago, DataBreaches.net reported on a leaky Amazon S3 bucket owned by MedCall Advisors in North Carolina. The leak, which exposed approximately 3,000 patients’ protected health information, was discovered by UpGuard, who published a number of redacted screenshots to document the leak. Their detailed report also noted how Randy Baker, the CEO of MedCall…
An OCR investigation illustrates the value of investigating small and medium-sized entities
One of the common themes in discussing security is that many organizations are not “mature” yet. And of course, as HIPAA recognizes in its security rule, smaller practices should not be expected to do everything you might expect a larger hospital system to do. But even small or medium-sized entities need to comply with the core…