From the North Dakota Information Technology Department, yesterday: ITD has completed its investigation stemming from a cyber-attack that occurred on an ITD-hosted server earlier this summer. Upon identifying the attack, ITD immediately secured the server, locked down the data, and started an investigation. Since that time, the department has been working with federal and state…
Court affirms dismissal of lawsuit against Advocate Medical Group over 2013 data breach
Ian Fullerton reports the latest development in a case that I’ve been following on PHIprivacy.net and this site since August 2013: Advocate Medical Group has been cleared in a case charging the organization with compromising patient privacy following a 2013 breach of its records. The lawsuit alleged that patients of Advocate had been put at…
UK: Prison laptop scandal: How the computers were hacked
Paul Peachey reports: The welcome screen on the prison laptop was simple to navigate. Prison officials clicked on the dog icon, inmates clicked on the cat. Clicking on the dog – and entering the password – allowed access to a section with administrator privileges and access to the internet. The cat was a gateway to…
More details emerge on UVa attack
Dean Seal has some additional details on the University of Virginia attack reported yesterday. Of note, the attack appeared to be from China and specifically targeted the email accounts of two employees whose work is connected with China. Read more on Daily Progress.
Data breach penalties gain overwhelming support from Australian IT: survey
Chris Player reports: Australian IT professionals are overwhelmingly supportive of penalties for company data breaches according to a new survey from security firm, Websense. The survey of 100 Australian security professionals found that 98 per cent of respondents believed that the law should address serious data breaches that expose consumers’ data loss. Of those, 59…
Illinois Dept. of Corrections says personal data of at least 1,000 employees accidentally released in response to FOIA request
Leeann Shelton reports another privacy breach due to a response to a Freedom of Information request: More than 1,000 Social Security numbers belonging to Illinois Department of Corrections employees were inadvertently released in a response to a Freedom of Information Act request. The affected employees work at the Lawrence and Dixon correctional centers, Acting IDOC…