Graham Cluley has more about this on HotforSecurity. I wish entities wouldn’t put “we’re down for maintenance” types of messages on their sites when they’re really investigating or attempting to remediate breaches.
Mayo Clinic discloses insider breach
John Russett reports: A Mayo Clinic Health System in Red Wing employee who inappropriately accessed more than 600 patients’ records is no longer employed by Mayo Clinic. According to Asia Zmuda, Mayo Clinic Health System in Cannon Falls, Lake City and Red Wing public affairs manager, the information breach was discovered sometime within the last…
Ca: Laptop, files stolen from employee’s car held data on babies
Jonathan Sher reports: Personal health information about young mothers and their babies was stolen from the parking lot of the local health unit after an employee left files and a laptop in a vehicle, health officials say. The thief made off with health information of about a dozen families that had been left in a…
AZ: Sealed records accessed in court
Brian Wright reports: A report from the Administrative Office of the Courts found more than 40 ongoing criminal cases involved possible unauthorized access to sealed documents by the Pinal County Attorney’s Office. From the moment Amanda Stanford took office in January as clerk of the Superior Court in Pinal County, she drew attention to the…
NJ: Breakwater Beach security breach puts hundreds of employee documents online
Karin Price Mueller reports: Hundreds of documents containing personal information of some employees at Jenkinson’s Breakwater Beach Waterpark at Casino Pier in Seaside Heights have been available online to anyone who clicks in the right place, Bamboozled has learned. The documents include copies of Social Security cards, driver’s licenses, birth certificates, passports, student IDs, tax forms,…
Dutch photojournalist convicted; misused leaked login credentials and shared the info on WhatsApp
Janene Van Jaarsveldt reports: A 22 year old freelance 112 photo journalist from Drunen has been found guilty of computer intrusion after he found login details of a secure system online, used it to log in to the system and then spread the information. The court in Oost-Brabant sentenced him to 80 hours of community…