A hacker who identifies him/herself as BH_Hacker has dumped data on Pastebin that allegedly comes from a kenken.go.jp database. The National Institute of Building Research identifies itself as an incorporated administrative agency of Japan. The data dump contains 330 records with first and last names, usernames, email addresses, and telephone numbers. With one exception, there were…
In split vote, MCCCD extends contract with law firm for data breach-related services (updated)
I usually don’t find news about law firms’ contracts with respect to data breach-related services particularly noteworthy, but in the context of Maricopa County Community College District (MCCCD)’s data breach response, there’s been a newsworthy aspect. Last year, MCCCD hired the law firm of Wilson Elser to handle their breach response. As I noted on…
UK: Family’s safety ‘put at risk’ by council’s blunder
Stef Lach reports: A father says his family’s safety was put at risk by a council blunder which saw his personal details sent to thousands of people. Renfrewshire Council wrote to the 5354 people on its approved landlords list inviting them to a Landlord Accreditation training course, but also attached a list with personal details…
FL: Another Defendant Sentenced In Identity Theft Tax Refund Fraud Scheme Involving Thousands Of Patients’ Personal Identity Information
There’s an update to a case first reported here earlier this year, and then updated here. As my investigation uncovered, the involved medical facility was Apex Laboratory, Inc., who, as of January 28, 2014, had not submitted any breach notification to HHS. Marquis Onigirin Moye, 24, of Pompano Beach, was sentenced for his participation in…
UK: Trust failed to ensure that all employees had mandatory training on information governance
In investigating two fax-related breaches involving two different employees, the Information Commissioner’s Office found that the Barking, Havering & Redbridge University Hospitals NHS Trust had a very low attendance rate for Information Governance training. Thus, although the trust had taken some steps to prevent breaches involving faxes being sent to the wrong fax number, and although a Confidentiality and…
PA: Patient information, cash stolen from Coordinated Health
Tim Darragh reports: Burglars broke into a Coordinated Health office in South Whitehall Township earlier this month, taking patient information and cash, according to police and company officials. The information included the last four digits of patients’ credit cards and Social Security numbers, as well as names, birth dates, phone numbers and some health information….