Last month, this site noted a FastHealth breach from 2017 that was first being disclosed. FastHealth had reported it to HHS as impacting 1,345 patients. Now Curry Health Network is notifying its members, and it’s not totally clear if these members were included in the number that had been previously reported to HHS. DataBreaches.net emailed FastHealth…
TX: Personal info still being discarded and dumped improperly
Courtney Schoenemann reports that a security analyst who goes dumpster diving in his spare time, came across a filing cabinet of account receivables from an Austin home remodeling company that had been dumped by an as-yet unnamed company: “Their routing numbers, bank account numbers, some had their driver’s license numbers on their checks. Everything you…
CVS Health Sued For Allegedly Revealing HIV Status Of 6,000 Patients
There’s an update on a breach reported in August, 2017. CBS reports: CVS Health is being sued for allegedly revealing the HIV status of 6,000 patients in Ohio. A federal lawsuit claims CVS mailed letters last year that showed the status of participants in the state’s HIV drug assistance program through the envelopes’ glassine window….
Data breach hits Saks Fifth Avenue, Lord & Taylor stores
Matt O’Brien reports: A data breach at department store chains Saks Fifth Avenue, Saks Off Fifth and Lord & Taylor has compromised the personal information of customers who shopped at the stores. The chains’ parent company, Canada-based Hudson’s Bay Co., announced the breach of its store payment systems on Sunday. The company said it was…
Web Developer Accused Of Stealing Data, Computer Tampering
Michael Woyton reports on a case in New Rochelle, New York: A web developer was arrested in New Rochelle for using his former employer’s data and computer servers to set up his own business. Westchester County District Attorney Anthony A. Scarpino Jr. said Friday that Nial Yusupov, 25, of New Rochelle was arraigned March 28…
Fourth Annual Data Security Incident Response Report Released – Building Cyber Resilience
Theodore J. Kobus III writes: On Monday we published our fourth annual Data Security Incident Response Report, which provides an analysis of the more than 560 cyber incidents handled by the team in 2017. Reflecting on the increasingly sophisticated nature of attacks, the aggressiveness by regulators in researching breaches and the expectations of highly developed responses,…