Jason Braverman reports: Kroger announced today that a box of pharmacy records was lost. They said in late July, a records management service, Retrievex, Inc., the company’s business associate, shipped a box of pharmacy records to the Woodstock Kroger via a third-party common carrier. Retrievex confirmed with the carrier that the box was lost in…
Ireland Issues Data Breach Notification Guidance
The Irish Data Protection Commission has issued guidance on data breach notification under GDPR. Attorneys at Fox Rothschild have prepared a summary that begins: Key takeaways: A personal data breach is a security incident that negatively impacts the confidentiality, integrity, or availability of personal data, with the consequence that the controller is unable to ensure…
Ontario Science Centre data breach exposes 174,000 names, email addresses
David Rider reports: A summertime data breach exposed the names and email addresses of 174,000 Ontario Science Centre members, donors and others including customers for camps and birthday parties, the Star has learned. Campaigner, a company that does email blasts for the provincially owned tourist attraction, informed the science centre on Aug. 16 that “someone…
Senator Demands Review of How DHS Shares PII With Contractors
Akshaya Asokan reports: Sen. Maggie Hasan, D-N.H. is demanding that the U.S. Government Accountability Office review how the Department of Homeland Security shares personal data with third parties following several recent security incidents in which such information was exposed. In an Oct. 23 letter to the GAO, Hassan writes that recent “troubling” security incidents connected to…
Ransomware hit TrialWorks, law firms and lawyers were not able to access court documents
Pierluigi Paganini reports: TrialWorks, a company that provides the most established and widely used legal case management software solutions, was a victim of a ransomware attack earlier this month. At result of the attack, law firms and lawyers, were not able to access the legal documents hosted on TrialWorks’ platform. Read more on Security Affairs.
UniCredit reveals data breach exposing 3 million customer records
Charlie Osborne reports: UniCredit has revealed a data breach resulting in the leak of information belonging to three million customers. On Monday, the Italian bank and financial services organization said that a compromised file, generated in 2015, is the source of the security incident. In total, roughly three million records were exposed, revealing the names, telephone…