Lance Griffin reports: A Headland man believed to be involved in a large identity theft incident at Flowers Hospital has failed in an attempt to withdraw his guilty plea. U.S. District Judge Myron Thompson ruled Monday that Kamarian D. Millender, 29, knowingly and willfully pleaded guilty to “felony information of aggravated identity theft” in July….
HIPAA Settlement Underscores the Vulnerability of Unpatched and Unsupported Software
From HHS, a bulletin concerning a settlement following a malware incident in 2011 that might have been avoided had the covered entity updated and patched their software: Anchorage Community Mental Health Services (ACMHS) has agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule with the Department…
Report finds Colorado state computers vulnerable to hacker attack
Chris Halsne reports: A just-released audit finds that Colorado state computer systems are vulnerable to a cyber attack. The report mirrors the results of a year-long FOX31 Denver investigation. We found gaping holes in security, some of which exposed the Social Security and bank account numbers of state employees and contractors. Monday, the State Auditor`s Office blamed the…
A Breakdown and Analysis of the December, 2014 Sony Hack
Risk Based Security (RBS) has posted a chronology and detailed analysis of the data dumps to date in the Sony hack. This is a must-read article for journalists or those interested in the scope of data types involved.
VA: Woman sentenced for stealing identities of patients
Scott Daugherty reports: A Suffolk woman was sentenced Monday to 5 years and 5 months in prison for her role in an identity theft scheme that targeted medical patients. The sentence is on top of a two year one Sheila Clark Lewis is already serving in Suffolk, as well as any sentence she might receive…
Officials report University of Oklahoma nursing web server compromised (updated)
NewsOK reports: The University of Oklahoma Health Sciences Center announced Monday that a College of Nursing Web server was compromised. University personnel discovered the security breach Oct. 20, according to a news release. While working to recover the system on Nov. 3, they learned the compromise could have enabled unauthorized access to sensitive data. University…