Joe Camp reports that the I-Team kept digging into the recent eBenefits breach, and came across an interesting document: The I-Team has uncovered documents revealing the Department of Veterans Affairs was warned that a privacy breach, like the one ABC11 exposed last month, was “practically unavoidable because of problems with the VA’s information technology system.”…
Inspira Vineland notifying patients about December theft of computers with PHI
On December 27, I blogged: Four days after a computer was stolen from Inspira Medical Center Vineland, the hospital still can’t say whether there was any patient data on it? The hospital issued a statement the next day saying that no patient data was on the stolen computers, but as I noted on January 17, when they announced an…
Church of Scotland Hacked, 1,570 User & 9 Admin Accounts Leaked
Yesterday it was the Church of Cyprus and today its the Church of Scotland that hacker @security_511 has breached and leaked data from. Today’s breach is on Church of Scotland (https://www.churchofscotland.org.uk/) and leak was announced not to long ago from twitter and has been posted to pastebin. The paste contains 1,570 User & 9 administrator credentials with the…
HHS Issues HIPAA Guidance on Sharing Information Related to Mental Health
The U.S. Department of Health and Human Services (HHS) has released new guidance explaining how the HIPAA Privacy Rule operates to protect individuals’ privacy rights with respect to their mental health information and in what circumstances the Privacy Rule permits health care providers to communicate with patients’ family members and others to enhance treatment and assure…
CalRecycle notifies employees after e-mail breach disclosed their Social Security numbers
California’s Department of Resources Recycling and Recovery (CalRecycle), which is under the Department of Environmental Protection, is notifying employees of a recent breach involving Social Security numbers. The text of the letter to employees, which has been uploaded to the California Attorney General’s public breach list, explains: On January 23, 2014, the Human Resources Office…
UK: Police arrest two involved in Aviva data leak
Andrew Pearce reported on Feb. 13: Aviva has sacked two members of staff after customer claims information and car details may have been accessed or disclosed to third party companies. The insurer confirmed that when the “illegal activity” was identified, the Insurance Fraud Enforcement Department was immediately contacted. And the Insurance Fraud Enforcement Department (IFED)…