A Whiting-Turner vendor seems to have had a breach, although the nature of the breach or numbers affected are not clear. From WT’s notification template: Whiting-Turner is writing to inform you of a recent event that may affect the security of your child’s personal information. We are providing this notice to provide you, the parent/guardian, with…
Category: U.S.
IA: Private student documents found at recycling center
Holly Hines reports: Documents found at an Iowa City recycling center last month contain personal information about local elementary school students, including their names, addresses and parents’ names. Antonio Montoya, a 22-year-old Iowa State University student, said he visited City Carton Recycling on March 19 and noticed a pile of Grant Wood Elementary students’ Individualized Education Program documents, which detail…
OptumRx notifying patients after laptop with PHI stolen from vendor’s unattended vehicle
Now what vendor was this? I don’t see anything in recent reports or on HHS’s public breach tool that would identify the vendor. From a notification template by OptumRx: We wanted to make you aware of a recent incident that may have affected some of your health information. On March 22, 2016, we were notified…
Security flaws found in 3 state health insurance websites
AP reports: Federal investigators found significant cybersecurity weaknesses in the health insurance websites of California, Kentucky and Vermont that could enable hackers to get their hands on sensitive personal information about hundreds of thousands of people, The Associated Press has learned. And some of those flaws have yet to be fixed. Read more on Midland…
MedStar: Ransomware success wasn’t IT department’s fault
Sean Gallagher reports that MedStar is firmly denying others’ reporting about their recent ransomware attack: Tami Abdollah of the Associated Press reported Tuesday that an anonymous source “familiar with the investigation” of the cyberattack claimed that the flaws that allowed attackers to compromise a JBoss Web application server and attack the network with Samsam crypto-ransomware had…
Einstein Health Network notifies 3,000 patients after web exposure of information
Justin Heinze reports: Einstein Healthcare Network may have suffered a data breach, they announced Thursday, and they are sending letters home to patients that may have been effected. The incident involved a website database containing patient information entered into Einstein’s website “Request for Information” form, Einstein said. Read more on Norristown Patch. EHN posted…