Emilie Ritter Saunders & Audrey Dutton report: A federal agency is investigating whether the company Idaho hired to manage part of its Medicaid program has violated patient-privacy laws. Optum Idaho, a unit of United Behavioral Health, took over insurance management for Idaho Medicaid’s mental-health and substance-abuse patients last fall. Local health-care providers who treat those…
Judge declines to cork wine shop’s suit against bank
Lisa Hoffman reports: A Nebraska federal judge has refused to dismiss a wine store’s proposed class action against Nebraska banks that, after suffering an alleged data breach, charged fees on purchases to customers whose credit and debit card numbers were stolen and used by thieves. Judge Lyle Strom of the U.S. District Court for the District of…
70% of finance apps vulnerable to input validation attacks
Help Net Security reports: A growing number of data breaches and security incidents can be directly linked to poor code quality, according to CAST. The data reveals finance and retail industry applications are the most vulnerable to data breaches, with 70 percent of retail and 69 percent of financial services applications shown to have data input…
How Statoil held off hacker attack last year
It’s always helpful when companies are willing to talk about what happened when they were attacked. In the wake of yesterday’s report about major Norwegian oil firms being attacked or warned of attacks, Statoil revealed that it was also the target of a massive attack last year. As reported on NewsinEnglish.no: “It started on March…
Attorneys General Probe into eBay Security Breach Continues
Kenneth Corbin reports that the investigation by more than 10 states’ attorneys general into the eBay breach disclosed in May continues. In a statement to ECommerceBytes, Connecticut Assistant Attorney General Matt Fitzsimmons said the attorneys general are looking into the specific circumstances surrounding the breach, as well as the general safeguards eBay has in place to…
Former Crozer-Chester Medical Center employee sentenced for identity theft
An update to a breach previously noted on this blog. Reynaldo Estrada was sentenced yesterday to 51 months in prison for stealing the identity information of numerous patients’ as part of a tax fraud scheme. The patient information theft occurred while Estrada was working at Crozer-Chester Medical Center’s Environmental Services Department in Upland and at Community Hospital in…