On February 15, 2018, UnityPoint Health discovered our email system was the victim of a phishing attack that compromised some employee email accounts. UnityPoint Health promptly took action to secure the impacted email accounts, changed passwords, and engaged external cybersecurity professionals to analyze what information might have been contained in the impacted accounts. After a…
La: Former medical assistant, 7 others jailed in connection with prescription fraud
Littice Bacon-Blood reports: A former medical assistant at a children’s clinic and seven others have been arrested and jailed in connection with a fraudulent prescription drug ring for opiate-based medication, authorities in St. John the Baptist Parish announced Friday (April 13). Authorities at the St. John Sheriff’s Office accuse the medical assistant, identified by authorities as…
Mise En Place Restaurant Services, Inc. Notifies Clients, Individuals Following Cyberattack
Sometimes I see a press release subject line and incorrectly assume it will be about customer data. This one from April 13 is more serious, it seems: Mise En Place Restaurant Services, Inc. (“MEP”) announced today that it was subject to a ransomware attack, which may have potentially exposed some information of clients and individuals….
Mount Ida students’ records shared without their permission
This may be more a matter for PogoWasRight.org than this site, so I’ll cross-post it over there. Laura Krantz reports: Students and parents at Mount Ida College say they are furious because the college shared their private records with UMass Dartmouth without their permission, amid a controversial plan to shut down the college and offer…
Unit of Thai telco True says customers’ data leakage fixed
Reuters reports: Thailand’s iTruemart, a unit of mobile phone operator True Corp Plc, said on Saturday it has fixed a data leak that led to information on some of its customers, including their ID and passport data, becoming public. The files of customers buying “TrueMove H” mobile packages had been ‘hacked’, it said in a…
Florence school system gets first ever IT report
If you care about data security in k-12, read this news report by Lisa Singleton-Rickman of TimesDaily concerning an Alabama school district. I think it serves as a useful example of what we’re up against. Start with the fact that the state does not require any IT audits in k-12 districts. Don’t ask, don’t tell? But Florence…