A U.S. Department of Health and Human Services Administrative Law Judge (ALJ) has ruled that The University of Texas MD Anderson Cancer Center (MD Anderson) violated the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules and granted summary judgment to the Office for Civil Rights (OCR) on all issues, requiring…
Category: U.S.
New Charges in Huge C.I.A. Breach Known as Vault 7
There’s a huge update in a significant case noted last month on this blog. Adam Goldman reports: Federal prosecutors have charged a former software engineer at the center of a huge C.I.A. breach with stealing classified information, theft of government property and lying to the F.B.I. The engineer, Joshua A. Schulte, 29, of New York,…
Changes to Louisiana’s Data Breach Notification Law Go Into Effect August 1
Joseph J. Lazzarotti, Jason C. Gavejian, and Maya Atrakchi of Jackson Lewis write that changes to Louisiana’s data breach notification law (Act 382) go into effect on August 1 of this year. Those changes include expansion of the definition of personal information, requirements that notification be made no later than 60 days from discovery of…
CO: Hacking case against basalt roofer dismissed
Jason Auslander reports: The District Attorney’s Office on Friday dismissed its case against the owner of a basalt roofing company accused of hacking into a competitor’s computer files and using the information to undercut and sabotage the competitor’s bids. Gregg Mackey, owner of Red Eagle Roofing, was first charged with a computer crime felony equal…
Sutter Health employees fired for ‘inappropriate access’ of medical records
Kayla Webster reports: A Sutter Health spokesman confirmed that some health system employees were fired for accessing medical information without permission, after a television station reported that two employees were let go after searching the medical records of Joseph DeAngelo, the suspected Golden State Killer. Sutter spokesman Gary Zavoral declined to state how many employees…
Florida probes possible misuse of confidential driver’s license info
Steve Bousquet and Lawrence Mower report: State law enforcement authorities said Friday they are investigating the possible criminal misuse of confidential driver license data in a case involving a high-ranking state official. “FDLE is investigating possible improper use of personal identifying information. Our case is active,” spokeswoman Gretl Plessinger said. “Tallahassee Regional Operations Center is…