Jan. 29 – please see update under this post. Meredith Cohn reports on a breach involving University of Baltimore student data: The University of Baltimore has added protections to personal student data that officials had left unsecured possibly for years, according to a state audit released this month. The information on 117,793 students was kept…
Category: U.S.
Conspirator Who Hacked Mortgage Brokers Sentenced in Computer Hacking and Wire Fraud Scheme
From a January 19 press release from DOJ: Victor Alejandro Fernandez was sentenced in federal court today to 129 months in custody for his involvement in a conspiracy to steal and misuse mortgage customers’ sensitive personal information. Fernandez was charged along with Jason Ray Bailey, John Gordon Baden and Joel Nava with conspiracy to commit…
Bill updates Iowa’s data security protections
Erin Jordan reports: Data security breaches at big corporations, including Equifax and Target, spurred the Iowa Attorney General’s Office to seek changes to Iowa law to further protect consumers. House Study Bill 526, discussed in a Judiciary subcommittee Tuesday, would update Iowa’s data breach notification act, which requires businesses, nonprofits and other entities hit by…
San Diego County Office of Education notifies component school districts of breach of employee retirement contribution data
The San Diego County Office of Education recently notified component districts that some employee retirement contribution data had been incorrectly shared with districts. From their notification: What Happened? On December 5, 2017, a San Diego County Office of Education (“SDCOE”) employee inadvertently sent an employee retirement contribution spreadsheet, containing employee name, Social Security number, and funding…
Allscripts Hit with Class-Action Complaint After Ransomware Attack
Can’t say that I’m surprised, not after reading that practices were having to turn patients away because they couldn’t access their patient records or billing records. Rajiv Leventhal reports that a class action complaint has been filed against Allscripts: It was just last week when electronic health record (EHR) vendor Allscripts suffered a ransomware attack…
Former employee of Veterans Affairs indicted for attempted sale of personal info of veterans and employees
LITTLE ROCK—Cody Hiland, United States Attorney for the Eastern District of Arkansas, announced today the unsealing of an indictment charging Phillip Hill, 32, of Benton, a former Department of Veterans Affairs (VA) database manager, with attempting to sell the personal information of veterans and VA employees. The indictment, returned by a grand jury in the…