Posted by Bitly on their blog tonight: We have reason to believe that Bitly account credentials have been compromised. We have no indication at this time that any accounts have been accessed without permission. For our users’ protection, we have taken proactive steps to ensure the security of all accounts, including disconnecting all users’ Facebook…
Toronto police computers hacked, U.S. Attorney claims; Not so much, Toronto police say
Peter Edwards reports: Toronto police are denying the allegations in a U.S. court document that says names and addresses of more than 500 confidential police informants were hacked by an online group led by a former U.S. navy nuclear systems administrator. The tiny American group, known as “Team Digi7al,” successfully attacked Toronto police computers between…
Health IT: The De-Identification Question
Anne L. Kim writes: The rise of health apps has expanded the opportunities for individuals’ data to be used for research purposes, policy analysis, and so on. But what are the complexities involved with making sure people are “de-identified” from their own data, so their privacy can be protected? At an FTC workshop today on consumer-generated…
Update: Edgewater Medical Center's Old Patient Records Hauled Out, Will Be Shredded
Benjamin Woodard follows up on a situation I noted on this blog in 2013 involving medical records that were abandoned over a decade ago at Edgewater Hospital in Chicago: Demolition crews this week began removing loads of old patient medical records from the vacant Edgewater Medical Center, a month after city inspectors criticized the lack of…
Additional information on Blue Cross and Blue Shield of Kansas City breach
On April 22, I noted that HHS had added a report from Blue Cross And Blue Shield Of Kansas City (“Blue KC”), but that I had been unable to find any information on the “unauthorized access/disclosure” breach that reportedly affected 2,546. It turns out that this was an insider breach involving employee wrongdoing. On April…
Additional information on Susquehanna Health breach
On April 22, I noted that Susquehanna Health had notified HHS that 657 patients were affected by a breach on December 5, 2013 involving “Unauthorized Access/Disclosure, E-mail.” I could find no statement on their website at that time. I still can’t find one, but their report to the Maryland Attorney General’s Office provides the missing details. On December…