Mollie Durkin reports: WellSpan Health has notified its employees about a situation that could expose the health system to a risk of federal health information privacy violations. In a Friday email, employees were told they could have unknowingly downloaded private patient information to their non-work devices, said WellSpan spokesman Barry Sparks. The email said if…
Rady's Children's Hospital breach occurred four times, not 2?
To follow up on two recent breaches: Rady Children’s Hospital has uploaded notification of their recently disclosed breaches to the California Attorney General’s site. Their notification for the 2014 breach can be found here (pdf). Their notification for the 2012 breach that they discovered in the process of investigating the 2014 breach can be found…
AL: Hardee’s worker busted for stealing credit card numbers at Greenville drive-thru
Lindsey Rogers reports: A Greenville woman is accused of stealing credit card numbers from customers at a Hardee’s fast food restaurant. Investigators say she then used the information to buy thousands of dollars worth of clothes, shoes and jewelry online. Tanya Powell, 41, of Greenville, was arrested Monday and charged with fraudulent use of a…
MI: ID thieves hack into Grand Avenue parking ramp system in Lansing
Scott Davis reports: Computer hackers have stolen credit card information from patrons of the Grand Avenue parking ramp in downtown Lansing. One of the ramp’s owner is urging users to replace their cards. Shawn Elliott, an owner of the ramp, said he shut down the ramp’s credit card processing system Friday after a patron told…
No Section 230 immunity for healthcare software provider
Evan Brown discusses an interesting court case, Hardin v. PDX, Inc.,: Cases dealing with the Communications Decency Act often involve websites. See, for example, the recent decision from the Sixth Circuit involving thedirty.com, and earlier cases about Roommates.com and Amazon. But this case considered a sort of unique suggested application of Section 230 immunity. The question was whether a provider…
Ca: Surrey school district accidentally emails out student information
Christopher Poon reports: The Surrey school district is apologizing to parents and students after the personal information of about 250 students was mistakenly sent out as part of a school’s online newsletter. According to district spokesman Doug Strachan, a staff member at a Surrey school was sending out a letter to parents from the…