MRT reports that once again, compromising employee email provides access for attackers: Midland Memorial Hospital announced Tuesday there was a data security incident involving a limited number of patients’ personal information. […] The hospital became aware on Oct. 13 that an unauthorized third party may have obtained access to an employee’s e-mail account on or…
Category: U.S.
New Report: The Geography of Medical Identity Theft
Pam Dixon and John Emerson have authored a new report from the World Privacy Forum: The Geography of Medical Identity Theft. From the report: Summary of Findings and Recommendations This report finds that medical identity theft is growing overall in the United States, however, there’s a catch. The consumer complaint data suggests that the crime…
WI: After computer hack, Nashotah pays $2K ransom for residents’ personal information
Steven Martinez reports: The village recently paid an unidentified hacker a $2,000 ransom to decrypt its computer system after a hack in late November that left some residents’ personal information exposed. Village President Richard Lartz said Thursday, Dec. 7, that the hack “totally encrypted” Nashotah’s computer files, making them inaccessible to staff. He said the only information that…
Clarion U. students notified after employees fall for phishing attack
Ron Wilshire reports: Clarion University was notified of an email compromise that occurred because of a criminal phishing scam that compromised two email accounts in the registrar’s office. The unauthorized individual or individuals had access to the accounts between October 7 and October 10. “Clarion University is committed to data integrity and privacy protection,” said Communication Manager…
Glens Falls Hospital workers’ Social Security numbers and flu shot status released in internal email
Michael Goot reports on a breach involving hospital employees’ health information. In this case, the health information relates to a work issue, and Social Security numbers are also involved, but it’s still their health information that caught my eye. The names and Social Security numbers of Glens Falls Hospital employees who had not received flu…
Sinai Health System notifies 11,350 patients after phishing incident
Ally Marotti reports: At least two employees at Sinai Health System had their email accounts compromised in a phishing incident, potentially affecting the information of 11,350 people. The seven-member hospital system said in a statement Thursday that it cannot confirm whether any patient information in the email accounts was viewed. However, there is a low…