This April 22nd notice seems to have flown under the media radar: The Ohio Department of Mental Health and Addiction Services (OhioMHAS) today notified the public of a privacy incident involving protected health information (PHI). The issue involves a February 2016 postcard sent to consumers of mental health services inviting participation in a satisfaction survey….
Category: U.S.
Google notifies employees of breach by vendor
Even Google has breaches that need to be reported. From a notification letter to Googlers that will be going out on May 9th: I am writing to follow up on an email we recently sent you about an issue that involves your personal information. The details of the issue are below. What Happened? We recently…
Notice of Data Breach from Bay Area Children’s Association
To the Patients and Guarantors of Bay Area Children’s Association: On April 1, 2016, we received notice from our electronic medical record provider that some of our patient records were acquired by unauthorized persons. Specifically, they determined that cyber intruders may have installed malware on their system in January 2015 and, through credential theft, accessed…
5,800 Palm Beach County teachers notified of data security breach
May 2- 6 is Teacher Appreciation Week. Showing appreciation for teachers generally does not include exposing their identity information, but unfortunately, that’s what happened in Palm Beach County School District. The district issued a statement about the unintended disclosure to a vendor: Superintendent Robert Avossa has alerted employees that approximately 5,800 teachers had their Social…
Kroger notifies employees of W-2 breach involving Equifax service
It’s not just Stanford University employees who are reporting problems involving their W-2 data being accessed improperly from W2-Express, a service of Equifax. Kroger is also notifying employees. The Inquisitr reports: Grocery giant Kroger sent an email to current and former employees today indicating that their Social Security numbers and dates of birth may be compromised. The…
Two men charged in Belarus over Penneco Oil theft
AP reports that two men have been charged by authorities in Belarus with receiving $1.35 million stolen from the bank account of Penneco Oil Co. in 2012 in a phishing scheme involving Bugat malware. I expect we’ll see a DOJ release on this later today or tomorrow, and I’ll update this post when it’s available.