Mike Price reports: A ransomware attack locked up all of Sugar-Salem School District 322’s servers this week — right during ISAT testing. District 322 became aware of a ransomware attack affecting their servers Tuesday and immediately shut them and all the computers down. Superintendent Chester Bradshaw said no sensitive data, such as student information, was…
Inmediata Health Group notifies covered entities’ patients after exposure of PHI on web
From their press release: Inmediata Health Group, Corp. (“Inmediata”) recently became aware of a data security incident that may have involved the limited personal and medical information of some of its customers’ patients. Inmediata is directly mailing notification letters to individuals who may have been affected by this incident and to provide resources to assist…
“FTC gives two companies a slap on the wrist after appalling hacks”
A story on ZDNet is headlined, “FTC gives two companies a slap on the wrist after appalling hacks.” That headline may be true as far as it goes, but it’s a bit unfair or misleading, so let’s dive into this a bit more. Catalin Cimpanu reports: The US Federal Trade Commission has agreed to settle…
Safeguard your network and customer credentials: Tips from the latest FTC data security case
One of the other enforcement actions the FTC has taken stems from the ClixSense breach in 2016. Lesley Fair of the FTC writes: Suppose a lunch companion says, “I think there’s something wrong with this tuna salad.” To determine if the problem is tuna not to their taste vs. tuna gone bad, would you scarf…
PA: Partners for Quality notifies 3,673 clients after employee email accounts compromised
Pennsylvania-based Partners for Quality is an agency focused on providing services to children with intellectual and developmental disabilities who face behavioral health challenges. PFQ consists of four entities: Allegheny Children’s Initiative Citizen Care Lifeways, Inc. d/b/a Exceptional Adventures Milestone Centers, and Partners For Quality Foundation More information about the programs can be found on their…
Greek DPA Issues EUR 30,000 Fine For Data Protection Violation by Hellenic Petroleum S.A.
Hunton Andrews Kurth writes: On April 15, 2019, the Greek Data Protection Authority (“DPA”) fined Hellenic Petroleum S.A. EUR 20,000 for unlawful processing of personal data and EUR 10,000 for failing to adopt appropriate data security measures. Hellenic Petroleum S.A. had engaged a vendor to conduct a study on its behalf. The study was exposed…