In April 2019, Health Recovery Services in Ohio disclosed a breach that had begun in November 2018 and had continued until February 5, 2019 when the intrusion was detected. In April, they claimed that although they had no evidence that any protected health information had been obtained, they couldn’t definitively rule it out. Now Conor…
Massachusetts Senator Introduces Legislation Imposing Obligations on Data Brokers
Odia Kagan of Fox Rothschild writes: Sen. Ed Markey, D-Mass., has introduced a bill (S. 2577) imposing considerable obligations on data brokers regarding their handling of personal information. Key provisions: […] Upon a verified request, disclose to the requesting individual information about the information collected, time of collection, who it was shared with and how…
Dutch pharma group Pharming denies involvement in CSL data breach
Carrie LaFrenz reports: Dutch pharma company Pharming Group NV said it “categorically denies“ any involvement in an alleged data breach by a former CSL staffer. Shares in the listed €698 million ($1.14 billion) biotech company recovered in early trade Thursday after tumbling nearly 12 per cent the day before in Europe, after it was revealed…
Mission Health sends letter warning of website data breach spanning years
WLOS reports: A data breach on the Mission Health store website spanning years has many on edge across Western North Carolina and beyond. In a statement mailed to patients, Mission Health says they found a malicious code present on the store website that was sending the payment information to an unauthorized person. According to the…
Stealthy Russian Hacker Group Resurfaces With Clever New Tricks
Andy Greenberg reports: In the notorious 2016 breach of the Democratic National Committee, the group of Russian hackers known as Fancy Bear stole the show, leaking the emails and documents they had obtained in a brazen campaign to sway the results of the US presidential election. But another, far quieter band of Kremlin hackers was inside…
CA: Lucia Mar employees at risk after data breach
Kasey Bubnash reports: Administrators and tech staff at Lucia Mar Unified School District are cleaning up after confidential employee information was accidentally shared in an email that was sent out to some district staff. At about 1:43 p.m. on Oct. 9, an email regarding open enrollment insurance—and including a file containing sensitive employee information—was sent to…