Brian Bowling reports: CVS and Giant Eagle pharmacies allowed other people to fill oxycodone prescriptions made out in his name and, in Giant Eagle’s case, then charged his health insurance, a local attorney says in a proposed class-action lawsuit moved to federal court on Monday. Andrew Gabriel, whose office is in Sewickley, is suing the…
Update: Benesse data theft suspect’s smartphone had info on 22.6 million customers
Updated breach estimate and scope: Education services provider Benesse Corp. said personal data on 22.6 million customers were stored on a smartphone owned by the Tokyo systems engineer under arrest on suspicion of theft and illegal copying of customer data. While announcing the figure Monday, Benesse, a subsidiary of Benesse Holdings Inc., said the stolen…
Appeals Court Absolves Sutter Health in Data Breach Case
Scott Graham reports: Sutter Medical Foundation did not violate California’s medical confidentiality act—and expose itself to potentially $4 billion in statutory damages—when a thief stole a computer containing 4 million patients’ medical records, the Third District Court of Appeal ruled Monday. The state’s medical privacy statute was not triggered because there’s no evidence the thief…
MCCCD breach: view from the under the bus
It appears that Maricopa County Community College District (MCCCD) is doubling down on trying to throw employees under the bus in the wake of its 2013 breach affecting 2.5 million. According to a web site created by the attorney for the employees: The MCCCD Administration is accusing Mr. Corzo of not doing a job that wasn’t his…
Possible Card Breach at Goodwill Industries – Krebs
Brian Krebs reports: Financial institutions across the country report that they are tracking what appears to be a series of credit card breaches involving Goodwill locations nationwide. For its part, Goodwill Industries International Inc. says it is working with federal authorities on an investigation into these reports. […] In a statement sent to KrebsOnSecurity, Goodwill industries said it first learned about a…
Johns Hopkins settles privacy breach lawsuit for $190M
Back in February 2013, we learned of a horrific privacy breach in which a gynecologist had been secretly recording his female patients. His conduct had been reported to the hospital by a female co-worker and he was fired. The files were found in his home after he committed suicide. In March of 2013, some of his…