Joseph J. Lazzarotti and Maya Atrakchi of JacksonLewis write: In the final days of 2020, the Office for Civil Rights (OCR) at the U.S. Health and Human Service (HHS) released a HIPAA Audits Industry Report (“the Report”), that could be quite helpful to covered entities and business associates for tackling HIPAA compliance as we enter the new…
Delaware County officials paid $25,000 in ransom to hackers who infiltrated the county’s computer system
Vinny Vella reports: Hackers used a malware attack to infiltrate Delaware County’s servers in the fall, and then held employees’ personal data for ransom, ultimately costing the county $25,000 in ransom to restore access to the data, according to county officials. The attack was first reported Nov. 24, when county officials said the computer network…
Australian Digital Health Agency sees ‘inconsequential’ My Health Record data breach notices eroding trust
Ry Crozier reports: The Australian Digital Health Agency, overseer of the My Health Record, has expressed concern at the number and type of “potential” data breaches it is being forced to disclose. In a submission to the Privacy Act review [pdf], the agency (ADHA) asks for changes to the My Health Records Act under which…
British Airways set to pay out billions in compensation over data breach
Barclay Ballard reports: The UK’s flagship airline, British Airways (BA), intends to begin settlement discussions later this year relating to a massive data breach that occurred in 2018. The legal firm responsible for managing the settlements believes that, collectively, BA could end up forking out billions. Your Lawyers was appointed to the Steering Committee for the BA…
Tasmania Police called in after ambulance patient details published online
Emily Baker reports: The private details of every Tasmanian who has called an ambulance since November last year have been published online by a third party in a list still updating each time paramedics are dispatched. The breach of Ambulance Tasmania’s paging system has been described as “horrific” by the Health and Community Services Union,…
Corporate Secrets at Risk in Hack of U.S. Courts Documents
Bloomberg Law reports: The Administrative Office of the U.S. Courts on Wednesday disclosed the “apparent compromise” of the electronic filing and case management system, known as CM/ECF. An AO spokesperson told Bloomberg Law the compromise is likely connected to the hack of SolarWinds’ Orion products, which affected multiple government agencies and companies. The AO said…