Naomi Jagoda reports: The Internal Revenue Service identified close to 1.1 million taxpayers who were victims of employment-related identity theft from 2011 through 2015, but almost none of the victims were informed, a Treasury Department watchdog found in a report made public this week. “Employment-related identity theft can cause significant burden to taxpayers, including the…
Category: U.S.
New York State Psychiatric Institute notifies 21,880 research participants of hack
The New York State Psychiatric Institute, a facility owned and operated by the New York State Office of Mental Health, has reported the following incident to HHS as impacting 21,880 research participants: On June 17, 2016, New York State Psychiatric Institute (NYSPI) learned that, between April 28 and May 4, certain parts of our system were accessed…
Fired employee sues SF State for $1 million after alleged hack
Golden Gate Express reports on a lawsuit stemming from a breach you may not have heard about: A former SF State information security officer claimed in a lawsuit that she was fired in a University attempt to sweep “under the rug” a 2014 hack involving a significant student records breach including financial records and password reset…
MO: Medical records for 238 Children’s Mercy Hospital patients stolen
KTTN reports that the medical records for 238 patients at Children’s Mercy Hospital were stolen from an employee’s locked vehicle on August 4. From their report, it sounds like the employee routinely needed to take records from facility to facility. They did not explain why those records could not have remained on a server that the employee…
AL: Lawsuit against Flowers Hospital could widen to include other alleged ID theft victims
Ken Curtis reports the latest developments in a lawsuit stemming from an insider breach for tax refund fraud. The former Flowers Hospital employee is currently serving a prison sentence, but now others want to join the potential class action lawsuit against the hospital. Curtis reports, in part: Legal documents show that Millender was in possession…
OneLogin reports security breach that exposed customers’ ‘Secure Notes’ data in clear text
Hyacinth Mascarenhas reports: Cloud-based identity access service OneLogin has announced a server security breach that allowed a hacker to access customer Secure Notes data due to a bug in the company’s logging system. The company said the breach occurred when an intruder managed to gain access to its logging system that stores logs and analytics…