On June 14, medical claims processor Med Associates issued a press release notifying an unspecified number of patients of a hacking incident. The firm had become aware of unusual activity in their system on March 22. Now Brian Nearing of the Times Union has an update that indicates that more than 270,000 New York residents…
Category: U.S.
MO: Black River Medical Center notified patients whose information was potentially accessed
Black River Medical Center in Missouri has sent notification letters to an unspecified number of patients potentially affected by a phishing incident discovered in April. Here is their June 13 notice from their web site: Black River Medical Center has become aware of a potential data security incident that may have resulted in the inadvertent…
Hackers stole feds’ information four years ago. Now we know what criminals did with it.
Wow. Rachel Weiner reports that data in the Office of Personnel Management (OPM) hack may have shown up as part of a fraud scheme: Four years after hackers stole personal information from over 22 million people through the Office of Personnel Management, a fraud scheme exploiting that data has come to light in southeast Virginia….
Arizona Man Sentenced to Prison for Distributed Denial of Service Attacks against Emergency Communications System and Other Municipal Websites
There’s a follow-up to a case noted previously on this blog involving a serial DDoS attacker described by others as the internet’s most inept criminal. From the U.S. Attorney’s Office, District of Arizona, today: An Arizona man was sentenced yesterday in Phoenix, Ariz., for directing distributed denial of service (DDoS) attacks at the computer networks…
Lawsuit claims Kansas official exposed private voter data
Roxana Hegeman reports: A civil rights group filed a federal lawsuit Tuesday against Kansas Secretary of State Kris Kobach challenging a multi-state voter registration database it claims exposed sensitive information including partial Social Security numbers from nearly a thousand state voters. The complaint by the American Civil Liberties Union of Kansas alleges “reckless maintenance” of…
Judge rules in favor of OCR and requires a Texas cancer center to pay $4.3 million in penalties for HIPAA violations
A U.S. Department of Health and Human Services Administrative Law Judge (ALJ) has ruled that The University of Texas MD Anderson Cancer Center (MD Anderson) violated the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules and granted summary judgment to the Office for Civil Rights (OCR) on all issues, requiring…