Mike Lindblom reports: Seattle’s new billing system for utilities, already afflicted by delays and cost overruns, launched Monday morning with a data flaw that sent 3,041 customers a link to other customers’ bills, including their names, addresses and energy or water use. Along with the privacy breakdown, the city sent six to 12 redundant email notices…
Category: U.S.
WA: Highline Medical Center notifies 18,000 patients whose information was exposed on the Internet by third-party error
The R-C Healthcare Management error that resulted in Bon Secours notifying over 655,000 patients that their protected health information had been exposed on the Internet beginning in April also impacted CHI Franciscan Health Highline Medical Center in Washington. But unlike Bon Secours, which had a current relationship with the vendor, Highline was no longer a client at the time of…
Mat-Su campus hit by data breach; more than 5,000 affected
The Daily News-Miner reports: The University of Alaska Anchorage’s Mat-Su campus has been hit by a data breach, according to a University of Alaska news release Tuesday. Several months ago, an unknown hacker or hackers used employee credentials to gain access to a server where sensitive student information such as transcripts, financial aid information addresses…
U.S. personnel management hack preventable, congressional probe finds
Dustin Volz reports: The U.S. Office of Personnel Management (OPM) did not follow rudimentary cyber security recommendations that could have mitigated or even prevented major attacks that compromised sensitive data belonging to more than 22 million people, a congressional investigation being released on Wednesday has found. Two breaches at the federal agency detected in 2014…
Breach response and notification done right: Nourse Farms
I occasionally come across breach notifications that impress me quite favorably. This notification by Nourse Farms is a good example of a strong incident response described in a strong letter that will be more likely to reassure customers than infuriate them.
Noodles & Company sued by financial institutions over breach
The Denver Channel reports that Noodles & Company has been sued by financial institutions who allege that they suffered injury as a result of a databreach first reported in May – a breach they claim could have been avoided had Noodles & Company learned from all the hacks of other major retailers and deployed adequate security….