The following email was published by The Oak Ridger after it was sent to them by NHC Oak Ridge administration: Officials at NHC Oak Ridge, 300 Laboratory Road, have reported a possible breach of patient information due to a missing backup tape that wasn’t encrypted. The information on this tape included patient names, Social Security…
PLS Financial notifies customers after vendor’s programming error allowed others to access their information (update)
PLS Financial is notifying customers that a programming error by an unnamed web site operator exposed their personal information to other site users. The programming error, which occurred on July 11, allowed loan applicants to potentially view a restricted part of the site containing names, postal and e-mail addresses, and Social Security numbers. During the…
Medical ID theft for tax refund fraud – again.
In discussing the recent Ponemon survey, I noted that the respondents did not seem to include anyone whose information was stolen for tax refund fraud – an all-too-prevalent crime in Florida. Here’s another example. Ebony Edwards pleaded guilty last week to conspiracy to commit aggravated identity theft, to file false claims against the government, and…
UK: Newcastle Citizen’s Advice Bureau data breach concern
BBC reports: An investigation is under way after the Citizen’s Advice Bureau in Newcastle inadvertently released personal information about some of its clients. About 1,300 files containing names, addresses, debt history and criminal records were accidentally made available on the internet. The Information Commissioner’s Office (ICO) is looking into the incident and a possible data…
NZ privacy commissioner finds that physician properly mitigated harm following a breach
Case Note 248601 [2013] NZ PrivCmr 4 : Medical practice mitigates future harm after data breach A doctor working in a suburban medical practice had his car broken into and bag stolen. The bag contained a USB stick holding the personal information of a number of patients, including the complainant. The data detailed the complainant’s…
NZ insurance firm settles over privacy breach
Stuff reports: An insurance company has been forced to reach a settlement and change its policies after breaching a man’s privacy by accessing his full medical history without permission. The unidentified man brought a complaint to the Office of the Privacy Commissioner after the company he applied to for trauma insurance accessed his full medical…