Here’s another case where a covered entity only learned about a breach when they were contacted by law enforcement. Kathleen E. Whisman, M.D. notified patients on August 5 that on or about April 11, she received a call from the San Ramon Police Department. They informed her that while investigating an ID theft ring,…
Ca: Patient privacy breach at Aberdeen Hospital revealed
CBC News reports: The Pictou County Health Authority is apologizing to dozens of people whose health records may have been viewed by an unauthorized health care professional. The privacy violation occurred in August when a person, who is not a Pictou County Health Authority employee, job shadowed another employee without approval at Aberdeen Hospital in New Glasgow….
Meanwhile, in FTC v. LabMD….
Just to keep everyone apprised on developments in the case this month: LabMD filed a motion to quash 35 subpoenas that had been issued on one day. And on November 12, LabMD filed its motion to dismiss the FTC complaint with prejudice and to stay administrative proceedings. In their motion to dismiss, LabMD raises essentially the same arguments that…
GitHub resets user passwords following rash of account-hijack attacks
Dan Goodin reports: GitHub is experiencing an increase in user account hijackings that’s being fueled by a rash of automated login attempts from as many as 40,000 unique Internet addresses. The site for software development projects has already reset passwords for compromised accounts and banned frequently used weak passcodes, officials said in an advisory published Tuesday…
Cupid Media Hack Exposed 42M Passwords
Brian Krebs reports: An intrusion at online dating service Cupid Media earlier this year exposed more than 42 million consumer records, including names, email addresses, unencrypted passwords and birthdays, according to information obtained by KrebsOnSecurity. The data stolen from Southport, Australia-based niche dating service Cupid Media was found on the same server where hackers had amassed tens…
CA: Redwood Memorial Hospital notifies over 1,000 patients that missing thumb drive held their PHI
On Monday, Redwood Memorial Hospital notified 1,039 patients by U.S. Postal Service of the discovery of a missing thumb drive that may have contained identifiable information. On Nov. 8, a hospital employee discovered that an unencrypted thumb drive was missing since Nov. 6 from the Cardiopulmonary Services Department at Redwood Memorial Hospital. At this time,…