Employees of Dracut Public Schools in Massachusetts weren’t as fortunate as those at Kanawha County Schools in West Virginia. Rick Sobey and Todd Feathers report that current and former employees’ personal information, including SSN, was acquired by a hacker after an employee fell for what the district describes as a “sophisticated phishing scheme.” They did not report…
Category: U.S.
2016: Healthcare data breaches in review, Part 1
There were a number of year-in-review analyses for the healthcare sector, but now Protenus has released its report, which is based on analyses of 450 U.S. incidents first disclosed in 2016. The incidents were compiled by DataBreaches.net, who also provided some of the analyses. While some media outlets still headline external hacks where massive numbers of records…
Children’s Hospital Los Angeles and the Children’s Hospital Los Angeles Medical Group notify parents of laptop theft
On December 21, Children’s Hospital Los Angeles and the Children’s Hospital Los Angeles Medical Group learned that a laptop had been stolen from a locked car of one of the physicians. The laptop, which contained minor children’s protected health information, was unencrypted. According to a notification letter dated January 13, a copy of which was…
Student Hacker Faces 10 Years in Prison For Spyware That Hit 16,000 Computers
Lorenzo Franceschi-Bicchierai reports: A 21-year-old from Virginia plead guilty on Friday to writing and selling custom spyware designed to monitor a victim’s keystrokes. Zachary Shames, from Great Falls, Virginia, wrote a keylogger, malware designed to record every keystroke on a computer, and sold it to more than 3,000 people who infected more than 16,000 victims…
Email account with patient information at U. Maryland doctors group hacked
Andrea K. McDaniels reports: A doctor’s practice plan affiliated with the University of Maryland School of Medicine has notified patients that somebody hacked the account of a physician assistant’s email account that contained the personal information of patients. The orthopedics practice at The University of Maryland Faculty Physicians Inc. mailed letters to about 1,500 patients…
Summit Reinsurance Services breach affected 19,000
The Summit Reinsurance Services ransomware breach, noted previously on this site, is beginning to attract more attention. First State Update reports: As a result of multiple consumer complaints, the Delaware Department of Insurance has been made aware of a security breach, involving Summit Reinsurance Services, Inc. (“SummitRe”) and BCS Financial Corporation, both subcontractors of Highmark…