Oh good grief… Catherine Richert of Minnesota Public Radio reports: People who have locked their credit reports may have trouble creating an account on the state’s new insurance marketplace, MNsure officials said today. To buy a plan on MNsure, consumers must prove they are who they say they are. To verify an applicant’s information, MNsure…
International SOS notifying travelers whose information was illegally accessed (Updated)
International SOS is notifying travelers of a data security breach. “On August 28, 2013, it was confirmed that some of our data files containing personal information were potentially unlawfully accessed. The data accessed includes a limited amount of personal information. This may have included your name, passport number, and in a limited number of cases,…
The Michigan State University Police Department is investigating an attempted theft of employee direct-deposit payroll earnings
eSecurity Planet just made me aware of a breach disclosed earlier this week: Posted by the Michigan State University Police on October 20: On Friday, October 18, two employees reported receiving email confirmation of a change in their direct-deposit designation. Police say that valid credentials (MSU NetID and password) were used by a perpetrator to…
Rep. Joe Barton's stunning ignorance about HIPAA and healthcare.gov
During a Congressional hearing yesterday, Rep. Joe Barton questioned a panel of contractors about commented-out source code in healthcare.gov that tells site users that they have no reasonable expectation of privacy in using the site. Seemingly basing his questioning on this report on The Weekly Standard, Rep. Barton stated that the hidden (commented-out) code was…
Hackers compromise official PHP website, infect visitors with malware (updated)
Dan Goodin reports: Maintainers of the open-source PHP programming language have locked down the php.net website after discovering two of its servers were hacked to host malicious code designed to surreptitiously install malware on visitors’ computers. The compromise was discovered Thursday morning by Google’s safe browsing service, which helps the Chrome, Firefox, and Safari browsers automatically…
Ca: AHS cited for privacy breach after devastating Shaw fire
I’ve occasionally noted the problems that may arise following a natural disaster. Here’s a case where a health service did its best to ensure patient care following a massive outage due to fire. Although they had a plan in place, the commissioner’s investigation found that the plan was not sufficiently comprehensive, was not understood by…