HealthSource of Ohio, a private, not-for-profit community health center experienced a privacy breach in November 2013 that affected 8,845 patients. The incident was added to HHS’s public breach tool this week. According to a statement posted on their website on or after February 26th, HSO uses a web-based program to provide information to patients calling with…
Courts Reining In What it Means to be a “Hacker” Under the Computer Fraud and Abuse Act (CFAA)
Ralph C. Losey of Jackson Lewis writes: The Computer Fraud and Abuse Act (“CFAA”) is an anti-hacker statute that prohibits unauthorized access, or the exceeding of authorized access, of computers connected to interstate commerce. 18 U.S.C. § 1030. Violators are subject to both criminal and civil liability. Employers have long taken advantage of the CFAA’s civil remedies to “sue former employees…
Ohio AG seeks harsher ID theft penalties for those victimizing service members
The AP reports: Ohio’s attorney general and two state lawmakers are pushing for harsher penalties against scammers who commit identity fraud and other theft crimes against active-duty service members and their spouses. The bill from Republican state Reps. Mike Dovilla and Terry Blair amends the current identity fraud and theft laws to increase penalties for…
NYC transit agency has data breach
AP reports: The personal information of approximately 15,000 New York City Transit Authority workers has been found on a compact disc inside a refurbished computer sold by a retailer. Authorities are investigating how the CD found its way into the computer drive. Read more on My San Antonio.
Info on Detroit Medical Center Harper University Hospital patients found in employee's possession during ID theft investigation
JC Reindl reports: A Detroit Medical Center employee was found in possession of personal information of 1,087 patients at DMC’s Harper University Hospital, the hospital system said today. In a statement, DMC said that documents containing the patients’ names, personal health information, date of birth and, in some cases, Social Security numbers were discovered in…
Did the CIA Violate the Computer Fraud and Abuse Act by Accessing Intelligence Committee Computers?
Orin Kerr writes: Senator Feinstein recently claimed that the CIA may have violated the federal computer hacking statute, the Computer Fraud and Abuse Act, by searching computers used by the Intelligence Committee to conduct CIA oversight. Based on the facts we know so far, I’m skeptical of the claim that the CIA violated the statute. This post…