Rob Gill reports: Hackers have stolen data of all members of the Association of Corporate Travel Executives. ACTE’s executive director Greeley Koch said that there had been a “malicious theft” yesterday (August 11) of members’ names and email address, although no other data such as credit card details or addresses was acquired by the hackers….
The Question Doctors Can't Ask
I’ve blogged a number of times about a Florida law that prohibits doctors from asking patients about guns in the home absent a specific concern. I’m already on record that I think this is an unconstitutional infringement on the First Amendment rights of doctors and that states should not be able to sidestep our ability…
Medical information requests of employees can be tricky
Banu Ramachandran writes: Imagine receiving a job application from an individual who appears highly qualified for the position you seek to fill. You eagerly invite the person to interview, but you are slightly surprised when he arrives because he uses a wheelchair and cannot travel up the stairs at the front door to the office….
University of Miami reaches settlement in patient data breach lawsuit
A federal court in Florida has been asked to approve a proposed settlement involving the University of Miami Health System. The proposed settlement would resolve a lawsuit stemming from their disclosure (pdf) earlier this year that thousands of patients’ billing vouchers stored with an off-site storage vendor were missing. At the time of the breach notification, UM revealed…
Does Cybovar impact the security of your credit report?
In the wake of last week’s announcement that Russian hackers had obtained 1.2 billion user ids with passwords, the FTC issued some guidance that included changing our passwords. But while people may change their passwords to their own accounts, will they think to change passwords to databases that don’t hold their data, but others’ personal information?…
Reminder to terminate login credentials of terminated employees
Today’s reminder is from a breach I came across in reviewing records obtained in response to a Freedom of Information Act request I filed. American Medical Response is a billing/collections agency. In the course of business, they routinely access a database maintained by Acxiom Insight. Apparently, login credentials of an inactive employee were never properly…