From their web site: Southern Hills Eye Care has become aware of a potential data security incident that may have resulted in the inadvertent exposure of patients’ personal and health information. Although at this time there is no indication that an unauthorized party accessed or viewed patient information, or evidence of patient information being misused,…
24K Cremation Society of Pa. customers notified of possible loss of personal information
Steve Marroni reports: The personal information of more than 24,000 clients of the Cremation Society of Pennsylvania may have been compromised. While officials do not believe any identities have actually been stolen, the organization’s corporate headquarters notified 24,168 people about the possible breach and is offering them free identity protection and credit monitoring services, officials…
Office Depot and Tech Support Firm Will Pay $35 Million to Settle FTC Allegations That They Tricked Consumers into Buying Costly Computer Repair Services
Office Depot, Inc. and a California-based tech support software provider have agreed to pay a total of $35 million to settle Federal Trade Commission allegations that the companies tricked customers into buying millions of dollars’ worth of computer repair and technical services by deceptively claiming their software had found malware symptoms on the customers’ computers….
OCR Acting Deputy Director Talks Risk Management at Advocacy Summit
Anne Zender reports: Risk management, risk analysis, and enabling individual access to information are three areas where healthcare organizations have room for improvement, according to forthcoming findings from the Department of Health and Human Services’ Office for Civil Rights’ (OCR) HIPAA audit program. Timothy Noonan, acting deputy director, health information privacy at OCR, spoke about…
And speaking of refusals to reimburse for breaches….
I don’t have access to the full article, but Law360 is reporting that: CVS Can’t Recoup $1.8M Info Disclosure Penalty From Printer A printing company that contracted with CVS to mail benefit letters to IBM employees doesn’t have to reimburse the $1.845 million the drugstore had to dole out after letters were sent… Read it…
DLA Piper Set to Sue Insurer Over NotPetya Claim: Report
Phil Muncaster reports that a major law firm has itself as a client in case that reminds us that attribution of a hack or malware attack can have all kinds of implications and consequences: DLA Piper has become the latest big name to be denied a multimillion-dollar cyber insurance claim following major losses caused by…