WLFI reports: A West Lafayette McDonald’s employee has been arrested after detectives believe she used a skimming device to steal credit card information from customers at the drive-thru window. It happened at the West Lafayette McDonald’s on Sagamore Parkway, near Salisbury Street. Read more on WLFI.
Ca: Western University students’ personal information published online
Iain Boekhoff reports: The University is investigating after a document containing personal information of 2014–15 first-year main campus students was made publicly available online. The downloadable Excel document contains the full names, Western email addresses, what residence they were in, home phone number, cell phone number and program or faculty of current second-year students. That…
MT: New West Medicare notifying 25,000 members whose unencrypted PHI were on stolen laptop (Updated)
Update: This incident was reported to HHS on January 15 as affecting 28,209 patients. Montana Public Radio reports that New West Health Services is notifying 25,000 members after a laptop with their PHI was stolen. Here’s the statement that was posted on New West Medicare’s site today, with one interruption by me for a short,…
MaineGeneral breach update: investigation revealed additional PHI compromised
There’s an update to a breach reported by MaineGeneral Health in December after the FBI alerted them in November that information had been found on an external web site. At the time of their December notification, MG had noted that the scope of the incident was still under investigation. Today, they issued a press release with…
WV: Woman says St. Mary’s didn’t protect her medical records
Kyla Asbury reports on another small-n breach case that reportedly had huge consequences for the victim: A Wayne County woman is suing St. Mary’s Medical Center after she claims it allowed people to access her private health information that should not have had access. St. Mary’s Medical Management LLC; Cabell-Huntington Hospital Inc.; Rebecca Winters, formerly…
TaxAct Acknowledges Data Breach
Jeff Goldman reports: The tax preparation solutions provider TaxAct recently began notifying an undisclosed number of customers that their personal information may have been inappropriately accessed. “We have concluded that an unauthorized third party accessed your TaxAct account between November 10 and December 4, 2015,” the company stated in a letter [PDF] sent on January 11, 2016 to those…