Kara Kenney reports: If you’re a Medicaid member in Indiana, you could be receiving a letter about a possible data breach involving your personal information. According to DXC Technology, the fiscal agent for the Indiana Health Coverage Program (IHCP), an internet hyperlink containing patient information was potentially accessible between February and May of 2017. The…
Category: U.S.
Some Erie County OCY cases part of statewide data breach
Kevin Flowers has more on a breach recently noted on this site: Officials with the Erie County Office of Children and Youth said that fewer than 30 Erie County children had their identities compromised as part of a recent data security breach involving a third-party vendor that affected approximately 1,800 child welfare cases statewide. The…
He left the company, but didn’t go away. Now, he’s going away for seven years.
David J. Neal reports on the sentencing of Jonathan Eubanks: A former Davie resident got seven years in federal prison for bedeviling Navarro Security Group with computer attacks after he resigned from the company. Attacks such as rerouting visitors to the company website to another security firms site. Or, deleting all the files on a company…
Medical billing firm exposes unencrypted protected health information
Last month, DataBreaches.net was contacted by Kromtech Security’s research team and asked to assist it in alerting a medical billing firm that they were exposing patients’ personal and protected health information on their backup server. On June 12, DataBreaches.net sent iMax Medical Billing in Ohio a message and left them a voice mail, alerting them…
Former Dentons associate accused in extortion plot involving threat to leak documents to legal blog
Debra Cassens Weiss reports: A former Dentons litigation associate in Los Angeles has been charged with extortion for allegedly threatening to leak sensitive law firm documents to the blog Above the Law unless his demands were met. Former associate Michael Potere, 32, is accused of demanding that the law firm pay him $210,000 and give…
So many notifications due to ransomware, but are these really necessary?
Another entity has recently notified patients whose protected health information was on a server infected with ransomware. Once again, even though investigation turned up no evidence that any patient’s PHI was actually accessed or exfiltrated, entities are notifying – on the side of caution and/or because HHS requires them to in the absence of firm…