On January 29, 2019, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, the “Dutch DPA”) published a report (in Dutch) on the personal data breach notifications received in 2018 (the “Report”). The EU General Data Protection Regulation (the “GDPR”) requires data controllers to notify a personal data breach to the competent Data Protection Authority (“DPA”) within…
FABEN Obstetrics and Gynecology notifies more than 6,000 patients after ransomware attack
On November 21, the FABEN OB/GYN practice in Florida got infected with GandCrab ransomware. They do not disclose how that happened, but the problem was detected quickly. To mitigate any damage or risk, FABEN decided to delete the infected files and restore files from backups. But they didn’t have backups of all files. Any files…
MA: Concord police erroneously expose citizens’ personal info
Aaron Curtis reports: The Concord Police Department is alerting residents to the possible exposure of private citizen’s personal information after the wrong version of the weekly police log was accidentally posted to the town’s website, according to a press release. The log file posted contained the personal information of individuals who reported incidents or were…
UK: Computer hacker, 21, faces jail for stealing customer details from TalkTalk in massive data breach which cost the mobile network £77m
Henry Martin reports: A computer hacker who stole customer details from mobile network TalkTalk in a massive data breach which cost the company £77m in lost business is facing jail. Daniel Kelley, 21, was one of a group of cyber criminals behind the massive data breach in October 2015. The gang also demanded 465 bitcoin…
Aetna settles with California in HIV-related privacy breach
AP reports: Aetna will pay $935,000 after one of its vendors sent letters to California patients that revealed via a window on the envelopes that the recipients were taking HIV-related medications, officials said Wednesday. The settlement resolves allegations that Aetna violated state health privacy laws, California Attorney General Xavier Becerra said. Nearly 2,000 Californians —…
Palisades Park officials say nearly $500,000 is missing from its accounts in bank breach
Kristie Cattafi reports: Officials in Palisades Park were notified last week that nearly half a million dollars had been drained from its accounts at Mariner’s Bank, the borough’s mayor and business administrator said Wednesday. Mariner’s Bank, which is based in Edgewater and has seven locations in Bergen County, told the officials that $460,000 was missing…