HHS OCR has announced another settlement of a HIPAA complaint: Elite Dental Associates, Dallas (“Elite”) has agreed to pay $10,000 to the Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services and to adopt a corrective action plan to settle potential violations of the Health Insurance Portability and Accountability Act…
AU: Inside a massive cyber hack that risks compromising leaders across the globe
Garrett Davis reports: One email was all it took for hackers to steal some of the most personal information from people potentially now in high-ranking roles across the globe. The cyber attack was so sophisticated it didn’t even need the person to click on a link or open a document to compromise decades worth of…
AU: Contractor for Landmark White charged over Sydney data breach
AAP reports: A Sydney IT contractor has been charged over a data breach at a property evaluation firm that allegedly affected more than 270,000 people, cost the company more than $8 million and resulted in troves of personal information being uploaded onto the dark web. Stephen Grant allegedly accessed and published more than 170,000 data…
Ca: Pharmacy patient health files discovered at Rankin landfill
Darrell Greer reports: The North West Company has recently issued a public information release notifying Kivalliq residents that materials containing health information were recovered from the Rankin Inlet landfill site this past Feb. 28. The release went on to state that the information belonged to patients of the previously operating Sakku Drugs in Rankin (since…
TN: ‘Father of Identity Theft’ Convicted on 13 Federal Counts
Dark Reading reports: James Jackson, a 58-year-old Memphis resident, used the identities of deceased individuals to steal money from banks and the estates of the dead. James Jackson, the self-proclaimed “Father of Identity Theft,” has been convicted of 13 counts of mail fraud, aggravated identity theft, access device fraud, and theft of mail. He now…
IN: Goshen Health notifies patients potentially impacted by 2018 data security breach
Sometimes, an incident that doesn’t appear to require notification may require notification under HIPAA. In an August, 2018 incident reported on The Elkhart Truth that involved Goshen Health, the health system originally determined that no notification was required, but when forensic investigators came in months later and looked for any information that might have been…