I’m having deja vu because I could have sworn I had already reported this type of scam on this blog, but since I can’t find it now…. Aaron Akinyemi reports: Up to 10,000 customers of the hotel booking website Booking.com have been the victims of scammers using fraudulently obtained email addresses to steal thousands of…
NC: Central Dermatology Center notifies patients after discovering malware had been inserted in their system in 2012
Central Dermatology Center (“Central”) announced on November 7, 2014 that on September 25, 2014 it became aware that one of its servers had been compromised by malicious software (“malware”). Central immediately consulted with forensic IT experts to identify and remove the malware and determine exactly what information on the server may have been accessed. The…
Breaking up is hard to do
In August, I reported on a dispute between the State of Texas Department of Health and Human Services and Xerox State Healthcare (formerly ACS Healthcare). The dispute arose after Texas terminated its contract with Xerox, who had operated the state’s Medicaid program and orthodontia pre-authorization program. Texas claimed that Xerox had not returned all records and…
Goldilocks and the three data breach estimates
Estimate in haste, repent in leisure? Over on PHIprivacy.net, I recently reported on a breach in Jersey City involving patient records stolen from a shed behind a doctor’s office. The first media report, on NJ.com, said Dr. Nisar A. Quraishi told police that 40,000 patients’ records had been stolen. At 40,000, that incident would qualify as the second largest breach…
Email addresses of 4,000 New Brunswickers released by Skillsoft in cc: gaffe
CBC News reports that Skillsoft, a company that develops and manages professional courses the government offers online through SkillsNB, exposed more than 4,000 New Brunswickers’ email addresses by accidentally using the cc: field in an email, instead of the bcc: field.
AL: Records containing minor’s sensitive information were publicly available through Birmingham City Schools website
Madison Underwood reports that hundreds of records containing minor’s sensitive information – names, birthdates, phone numbers and more – were publically available online at a website operated by Birmingham City Schools. Read more on AL.com. Would this be a good time to remind everyone that Alabama is one of only a few states that does not…