Amy Phillips reports: New England Dermatology, P.C., d/b/a New England Dermatology and Laser Center (“NEDLC”), is reporting that paper records containing health information of patients who were seen at their Northampton office during a period from approximately June 10, 2013 to May 23, 2018 were discarded without first being shredded. NEDLC self-reported the lapse in appropriate waste…
Category: U.S.
Robocall Firm Exposes Hundreds of Thousands of US Voters’ Records
Catalin Cimpanu reports: RoboCent, a Virginia Beach-based political robocall firm, has exposed the personal details of hundreds of thousands of US voters, according to the findings of a security researcher who stumbled upon the company’s database online. The researcher, Bob Diachenko of Kromtech Security, says he discovered the data using a recently launched online service…
New York State investigating ‘inappropriate’ Snapchat posts made by workers at Canandaigua nursing home
WROC reports: The New York State Department of Health is looking into posts shared on Snapchat by staff at Canandaigua nursing home MM Ewing Continuing Care. In a statement, a spokesman from the state Department of Health says, “We are investigating concerns related to an alleged violation of resident’s rights at MM Ewing Continuing Care….
Ruben U. Carvajal, MD Provides Notice to Individuals of Data Security Event
Ruben U. Carvajal, MD recently discovered an incident that may impact certain Ruben U. Carvajal, MD patient information. On January 3, 2018, Dr. Carvajal received a report that certain Ruben U. Carvajal, MD patient information may have been accessible on the internet. Upon receiving this report, Dr. Carvajal initiated an internal investigation and contacted the…
Sunspire Health notifying patients after employee email accounts accessed in phishing attack
Joseph Goedert reports: Sunspire Health, a nationwide network of addiction treatment facilities, is notifying an undisclosed number of individuals and offering them credit and identity monitoring services after several employee email accounts were accessed in a phishing attack. While the size of the Sunspire attack is not yet publicly known, the incident soon will be…
Pennsylvania birth certificate system hacked; no records stolen
Steve Esack reports: The Pennsylvania Department of Health’s birth certificate system was shut down for nearly a week last month after someone hacked into an internal website but did not take or alter citizens records, a government spokesman said Friday. An investigation is continuing into the hack, said Dan Egan, spokesman for the Office of…