The healthcare industry is experiencing a surge in data breaches, security incidents, and criminal attacks—exposing millions of patients and their medical records—according to the latest Ponemon Institute study, sponsored by ID Experts®, the Fifth Annual Benchmark Study on Privacy & Security of Healthcare Data. The study reveals that criminal attacks in healthcare are up 125 percent since 2010…
Are you closing the door fast enough?
According to a recent survey by IS Decisions, 75% of businesses leave themselves open to infosecurity breaches from former employees by not following strict post-employment processes to ensure employees no longer have access to information. FreshBusinessThinking.com has more on the survey. Now add in the risks of employees who know they will be leaving their jobs…
Attackers target new XSS in millions of WordPress sites
This vulnerability was found in a Twenty Fifteen plugin called JetPak. You all know what to do by now.
JP Morgan bank bod accused of flogging customer account info
Iain Thomson reports: The FBI has charged a former JP Morgan employee with selling customer information to thieves who wanted to empty accounts without triggering any alarms. Unsealed court records [PDF] recount that Peter Persaud, who worked at JP Morgan’s Brooklyn branch, contacted an undercover FBI informant, and allegedly offered to sell him the account details of…
Former Blue Cross worker pleads guilty to filing over 180 fraudulent tax returns
WTVM reports that a former Blue Cross Blue Shield customer service employee has pleaded guilty to filing false tax returns, wire fraud, and aggravated identity theft. Danielle Wallace admitted to filing 180 fraudulent tax returns and stealing nearly $500,000. The false returns used personal information obtained from Blue Cross Blue Shield members who had called the…
Pennsylvania-based Summit Health joins ranks of those falling for phishing
On March 18, attorneys for Summit Health, Inc. in Pennsylvania notified the Maryland Attorney General’s Office that on February 19, the hospital had learned that some of its employees had fallen for a phishing attempt. As a result of the successful phishing, employees’ information in the Lawson Employee Self-Service System, used to access payroll and benefits information, may…