No detailed medical records were involved, but the Michigan Department of Community Health is notifying nearly 50,000 affected residents that their PII/PHI may have fallen into the hands of a hacker. CBS Detroit reports the state has sent out letters after computers hosting the Michigan Cancer Consortium website were accessed by hackers. “They were reports…
Vendini breach update
As I’ve noted before, the Vendini breach, reported previously on this blog, appears to fairly large, but has generally flown under national mainstream media attention. Instead, I see bits and pieces in local media or on organizations’ web sites as entities report that their patrons or members were affected (cf, reports involving Purple Rose Theatre,…
Ubisoft notifies UPlay users to change passwords following breach
Ubisoft has posted an announcement on their site today: Hello All, We recently found that one of our Web sites was exploited to gain unauthorized access to some of our online systems. We instantly took steps to close off this access, to begin a thorough investigation with relevant authorities, internal and external security experts, and…
AT&T iPad hacker appeals conviction, long sentence
Jeremy Kirk reports that attorneys for security researcher Andrew Auernheimer (“weev”) have filed an appeal over his conviction and sentencing: Andrew Auernheimer, known as “weev,” created an automated tool to extract the names and email addresses of 114,000 iPad 3G owners from AT&T’s servers, which were used by customers to access their accounts. The information was…
Attorney General Kamala D. Harris Releases Report on Data Breaches Reported to State in 2012
I love it when states publicly post the data breach notifications they receive, but California’s Attorney General Kamala Harris just raised the bar for other states by actually analyzing and reporting on the breaches involving California residents. From California’s Attorney her press release: Attorney General Kamala D. Harris today released the first report detailing the…
MA: Medical records discovered in dumpster
Laura Hutchinson reports that a passerby discovered medical files left in a dumpster. The files were from Behavioral Health Network in Springfield. A spokesperson for BHN was reportedly surprised by the discovery: Darcy says this shouldn’t happened because they pay to get records shredded. “They come in and shred documents right on the premises before they take it…