Computerworld editor Evan Schuman has an opinion piece that begins: Late last Wednesday (May 25), LinkedIn casually sent a note to its customers that opened with one of the least-calming phrases possible: “You may have heard reports recently about a security issue involving LinkedIn.” It continued to say, in effect, “Let us now distort and…
Retailers fight to silence customer data breaches
Violet Blue reports: A consortium of retailers, including Target and Home Depot, vowed to fight a data breach notification bill. The bill, HR 2205 from Reps. Randy Neugebauer (R-Texas) and John Carney (D-Del.), would require companies to tell customers when they’ve been hacked and would also require the encryption of data in both storage and transit. It would…
Ca: Rexall hands out patient’s confidential health records to wrong person
CityNews reports: When Maureen Pittman picked up her prescription from a Mississauga Rexall, she didn’t expect to be bringing home another patient’s entire confidential medication history. [… The 6-page] medication history contains the patient’s name, address, phone number, Ontario Health Insurance number, what medications were prescribed and what they are generally used for. Once Pittman realized…
CERT warns of hardcoded creds in medical app
Darren Pauli reports: The US computer emergency response team has issued a warning after admin credentials were found in a popular medical application used for acquiring patient data. The MEDHOST application is designed for handling the perioperative three stages of surgery including patient tracking, and patient conditions. It can be hosted and managed remotely. About 1,000 healthcare…
EHR/EMR hacks impact Connecticut and Pennsylvania patients
Stamford Podiatry Group in Stamford, Connecticut is notifying patients that their network was comprised and electronic health records (EHR) may have been accessed and copied. Although forensics examination was unable to determine with certainty exactly what data were exfiltrated, Dr. Rui DiMelo, Vice President of Stamford Podiatry Group, informed patients that unauthorized persons obtained “covert”…
Telecom giant accuses employee of data theft
A telecom in India has filed a criminal complaint against a former employee for stealing proprietary information on his way out. Times of India doesn’t name the employee, but the firm seems to be Gujarat Telecom Circle.