Justine Coyne reports employees at a Pittsburgh university are being notified after a package containing payroll reports from the university’s payroll vendor, Ceridian, arrived with the reports missing from the package: Point Park University on Wednesday alerted employees to a potential data breach involving names, home addresses, Social Security numbers and other information. The potential…
Notice of Data Security Event – City of Pleasantville, New Jersey
On October 8, 2013 the City of Pleasantville (“Pleasantville”) discovered that a computer used by a Pleasantville employee was infected with malware. Pleasantville commenced an internal investigation into this incident. Pleasantville retained independent, third-party forensics experts to confirm the extent of this malware intrusion and to assist in remediating the issue. Pleasantville retained privacy and…
Sally Beauty Hit By Credit Card Breach (update1)
Brian Krebs reports: Nationwide beauty products chain Sally Beauty appears to be the latest victim of a breach targeting their payment systems in stores, according to both sources in the banking industry and new raw data from underground cybercrime shops that traffic in stolen credit and debit cards. On March 2, a fresh batch of 282,000 stolen…
CA: Former medical billing employee charged with ID theft
CBS in Los Angeles reports that Reon Jordan, 34, a student at West Los Angeles Community College, was arrested on identity theft charges. “Additionally, the investigation has revealed that Suspect Jordan afforded herself hair extensions, clothing, jewelry and airline tickets to Alaska with her proceeds from the scheme,” Deputy Kim Manatt said. Jordan reportedly obtained her…
Ca: Health department won't remove doctor for privacy breach
CBC News reports that a doctor who allegedly improperly accessed patient files for over two years continues to be employed by the facility, who didn’t even notify patients when they first discovered the breach: Although New Brunswick’s Department of Health says it could step in to remove the doctor involved in a privacy incident at…
Assisted Living Concepts notifying over 43,000 employees after hack of payroll database at vendor’s (update3)
Chicago-based Assisted Living Concepts, LLC and its subsidiaries own and/or operate 200 assisted living facilities in 20 states. ALC uses an external vendor to process its payroll for its employees. On February 14, the vendor notified ALC that they had detected unauthorized access to ALC’s payroll database. Investigation revealed that ALC’s login credentials had been…