Add San Diego-based Volcano Corporation to your list of firms reporting breaches involving e-mail attachment errors. Volcano Corporation reports that the error was made – and detected – on May 21, when a spreadsheet was inadvertently attached to an e-mail sent to some employees about their retirement account. The spreadsheet included employees’ names, email addresses…
Akorn, Inc. notifies employees after email accounts compromised (UPDATED)
Add Akorn, Inc. to any list you maintain of organizations whose employee email accounts have been compromised. Through their external counsel, the niche generic pharmaceutical firm notified the New Hampshire Attorney General’s Office on June 4 that they had discovered that four employee e-mail accounts had been comprised over the prior two months, exposing personal…
Blue Shield of California notifies some members of exposure breach following software update
Software updates are an all-too-common source of breaches. Here’s another one, this involving Blue Shield of California. From their notification to the California Attorney General’s Office: As the (unintended) result of a computer code update Blue Shield made to the website on May 9, three users who logged into their own website accounts simultaneously with…
NY: Metropolitan Hospital Center notifies almost 4,000 patients of breach
The NYC Health and Hospitals Corporation is providing some powerful reminders of the importance of auditing and monitoring employee emails. Last month, I noted that they had detected breaches involving patients at Bellevue Hospital and Jacobi Medical Center. On June 1, HHC notified HHS of yet another email-related breach, this one involving Metropolitan Hospital Center….
Laptops stolen from National Seating and Mobility contained some patient information
National Seating and Mobility notified the New Hampshire Attorney General’s Office on June 12 of an incident that occurred on April 14, 2015 when two laptops, a smartphone, a backpack, and a briefcase were stolen from two employees’ locked work vans in Atlanta, Georgia. The incidents were immediately reported to the police and NSM was…
Shorter University data breach lawsuit advances
Oops – found this one sitting in drafts folder. I should have posted it two weeks ago. Law360 reports: A Georgia federal judge on Thursday trimmed breach of contract and negligent misrepresentation claims from a proposed putative class action over the theft of student medical data at a state university, but refused to let the…