The DesMoines Register reports: One of Iowa’s main hospital and clinic systems has notified about 1.4 million patients that their personal information might have been breached. UnityPoint Health officials said hackers used “phishing” techniques to break into the company’s email system. The company, based in West Des Moines, said the hackers could have obtained medical…
Category: U.S.
Court Rules Drivers Lack Standing to Pursue Claims Against Uber Because Data Breach Did Not Include Drivers’ Social Security Numbers
Tony Tootell and Patrick J. McMahon of Foley Lardner write: California companies housing their drivers’ personal information may feel less exposed to liability in light of the Northern District of California’s holding in Antman v. Uber Technologies, Inc. in May.[1] The trial court in Antman found that Uber was not liable to its drivers after hackers illicitly accessed their personal…
AmberCare Hospice notifies patients of “missing” laptop
From AmberCare Hospice, this notice of a laptop theft incident: Recent Data Incident Affecting AmberCare Hospice Patients Ambercare Corporation, Inc. (“Ambercare”), a provider of personal care, hospice, and home health services, is committed to protecting its clients’ confidentiality. Ambercare has recently provided notice to certain New Mexico residents about an incident affecting their personal information….
State survey leads to Vermont Health Connect email breach
Mike Faher reports: A survey snafu last week led to the disclosure of some Vermont Health Connect and Medicaid customers’ email addresses, state officials said Thursday. In total, 127 people sent emails – some inadvertently and some not – to other health insurance consumers amid confusion about an online survey issued July 20 through the Department…
Confluence Health discloses patient data breach after employee email account hacked
Jefferson Robbins reports: Confidential patient information may have been released in an email breach at Confluence Health, the Wenatchee medical organization said in a Saturday press statement. The information contained in an employee’s breached email account may have included “some patient information” including name and treatment, the press release said, but no financial information was…
How they did it (and will likely try again): GRU hackers vs. US elections
Sean Gallagher does a deeper dive into the indictment of 12 GRU agents for meddling with the U.S. 2016 election. Here’s just a small snippet: After digging into this latest indictment, the evidence suggests Trump may not have made a very good call on this matter [publicly expressing doubt that Russia was involved]. But his…