Adam Greenberg reports: Though unnamed in a breach notification and follow-up reports, a professor of ethical hacking at City College San Francisco (CCSF), Sam Bowne, has come forward on the internet to clarify that he did not demonstrate hacking a medical center’s server in a class, but rather came across sensitive information during a Google…
Huntington Bancshares Group Health Care Plan members latest victims of Staywell/Onsite Health Diagnostics breach
CORRECTION: Children’s Mercy Hospital was affected by the breach that occurred in March 2014, not the 2012 breach. Original story: It seems like I’m reporting a lot of breaches involving StayWell Health Management and their vendor, OnSite Health Diagnostics this year. It’s probably because they’ve disclosed two breaches that affected numerous StayWell clients. The latest entry is…
IL: Urology patients notified after laptop attached to testing equipment was stolen
One of the recent breaches added to HHS’s public breach tool involved a case where a laptop connected to equipment was stolen from the covered entity’s premises. Midwest Urological Group in Peoria, Illinois reported that 982 patients had information on a laptop that was stolen on or about May 30th. There does not appear to be…
Hacker ‘Rawshark’ disrupts NZ election campaign
Rob O’Neill reports that the hacking of blogger Cameron Slater’s Whale Oil email account, and the exposure of those emails (and other materials apparently not from his email account) in a book and to the media is disrupting national elections in New Zealand: New Zealand cabinet minister Judith Collins resigned yesterday in what appears to…
Redacting the name of the accused employee from the decision following a disciplinary hearing
From the New York Public Personnel Law blog: OATH Index #1536/14 In the course of a disciplinary hearing the employee placed certain of his personal medical information in the hearing record. He then submitted a post-hearing request in which he asked OATH Administrative Law Judge Alessandra F. Zorgniotti “to remove his name from the [disciplinary]…
OH: Forest Hills data security breach roils parents
Ally Marotti and Bowdeya Tweh report: The Forest Hills School District had a computer security breach earlier this month, where information on all of the district’s more than 9,000 students was accidentally sent to most district parents. District officials Friday told parents about the breach that included student identification numbers, home addresses and parent email…