Hiring employees who work remotely can pose additional challenges for security and compliance with regulations. In March, Sentara Health disclosed an incident concern that resulted in the notification of 1,620 patients. They described the concern this way: In December, the Sentara Health’s Lab Services department hired an individual to process lab requisitions. Lab requisitions are…
Hackers Break Into Car Sharing App, 8.4 Million Users Affected
Bogdan Popa reports: Indian company Zoomcar, best known for its car-sharing model that allows customers to rent vehicles from individuals, has recently acknowledged a data breach that exposed the data of 8.4 million users. The NASDAQ-listed firm revealed the hack attack in an SEC 8-K filing, confirming that a threat actor managed to access its systems and…
Cyberattack pushes German napkin company into insolvency
It is not often that a ransomware attack or cyberattack is wholly responsible for a business failing. With each such claim that is investigated, we sometimes find that an entity was already in financial distress and the attack may just have been one stress too many. Maike Krebber reports: A cyberattack has potentially serious consequences…
WMATA Train Operators Arrested in Health Care Fraud Scheme
June 13 – Michelle Shropshire, 54, of Waldorf, Maryland, and Harlisha Jones, 49, of Clinton, Maryland, and Washington, DC, were arrested this morning on health care fraud, wire fraud, mail fraud, aggravated identity theft, and conspiracy charges filed in U.S. District Court. According to the indictment, from June 2021 through January 2024, Shropshire and Jones,…
Washington Post investigating cyberattack on journalists, WSJ reports
Reuters reports: A cyberattack on the Washington Post compromised the email accounts of several journalists and was most likely the work of a foreign government, the Wall Street Journal reported on Sunday. Matt Murray, the Washington Post’s executive editor, said in an internal memo that the breach was discovered on Thursday and an investigation had…
Resource: State Data Breach Notification Laws – June 2025
For a summary of basic state notification requirements that apply to entities who “own” data, download Foley & Lardner’s State Data Breach Notification Laws Chart. They write: This chart is current as of June 2, 2025, and should be used for informational purposes only because the recommended actions an entity should take if it experiences a…