Every time I think I’m ready to total out the March data on health data attacks or incidents, another incident pops up belatedly on HHS’s site. This time, there were two reports that I had to add yesterday. One was a report from Palmetto Health in South Carolina (now part of Prisma). Palmetto reported that…
Hacker breached Minnesota state agency e-mail, placing data of 11,000 at risk
Chris Serres reports: A data breach last year at the state agency that oversees Minnesota’s health and welfare programs may have exposed the personal information of approximately 11,000 individuals. The state Department of Human Services (DHS) notified lawmakers Tuesday that an employee’s e-mail account was compromised as a result of a cyberattack on or about…
Saratov: medical documents with personal data of patients found at landfill
Saw this item on CrimeRussia under High Profile Cases. I’m not sure why they call this a high profile case, but it seems like sensitive info is sensitive info no matter what country you live in, and having papers with medical info floating around is just not acceptable in Russia, either. The Regional Prosecutor’s Office…
Equifax forced to report to the Privacy Commissioner of Canada for six years as a result of 2017 data breach
Vito Pilieci reports: The Office of the Privacy Commissioner of Canada will monitor American credit agency Equifax Inc. for the next six years after an investigation into a massive data breach of personal information at the firm in 2017. […] The commissioner has also released a “compliance agreement” with the company that cracks down on…
Yahoo strikes $117.5 million data breach settlement after earlier accord rejected
Jonathan Stempel reports: Yahoo has struck a revised $117.5 million settlement with millions of people whose email addresses and other personal information were stolen in the largest data breach in history. The proposed class-action settlement made public on Tuesday was designed to address criticisms of U.S. District Judge Lucy Koh in San Jose, California. She…
MA: Baystate Health suffers data breach affecting 12,000 patients
AP reports: A Massachusetts hospital says a data breach exposed information about some 12,000 patients. Baystate Health of Springfield said Monday that a phishing incident resulted in unauthorized access to the email accounts of several employees between Feb. 7 and March 7. The hospital says the accounts included patient names and dates of birth, certain…