A now-suspended employee of Jefferson City Public Schools transferred student files containing medical information and student identification numbers to a personal email account, the district said in a news release Wednesday. The district said it recently determined the employee transferred the files into a personal Gmail account, which is a violation of district policy. The…
Citrix Sued For Not Securing Employee Info Before Data Breach
Sergiu Gatlan reports: A class action complaint was filed by an ex-employee of Citrix for damages suffered following the security breach which allowed hackers to access Citrix’s internal assets for roughly six months and to steal sensitive personal information of both current and former employees. The plaintiff is Lindsey Howard, “a resident and citizen of…
Cyber attack could keep county servers down for days
Luzerne County’s administration has shut down some computer servers and work stations to address a cyber attack discovered last weekend, officials said. On Wednesday morning, county Administrative Services Division Head David Parsnik said the clean-up process may take several days to complete. By the afternoon, the administration sent workers an email indicating the servers may…
Major Hotel Management Company Leaks 85GB Of Security Log Data
Shane McGlaun reports: Another significant hack has happened, and this one is a hack of a hotel management company that backs some of the largest hotel chains in the world. The hotel management company in question is Pyramid Hotel Group, and it manages many Marriott locations. The company had a server that left an unsecured…
Tennessee, 15 Other States Reach $900,000 Data Breach Settlement With Medical Informatics Engineering
Attorney General Herbert H. Slatery III announced Wednesday that a U.S. District Court judge has signed a consent judgment negotiated by 16 states’ attorneys general and Medical Informatics Engineering, Inc. This case was the nation’s first-ever multistate lawsuit involving a HIPAA-related data breach. The lawsuit, led by Indiana, was filed in December of 2018 against…
People Inc. reports data security breach involving clients’ personal info
Harold McNeil reports: People Inc. said it was the target of a data security breach that involved protected health information of some of its current and former clients. People Inc. learned that two employees’ email accounts were breached and their emails contained personal information about clients, including names, addresses, Social Security numbers, financial account information,…