Dinesh Nair and Jessica Dye of Reuters report that one of the card processors whose security was breached in a $45 million global cyber heist was India’s ElectraCard Services. No one has confirmed that officially, however, as the sources spoke on condition of anonymity. You can read the Reuter’s exclusive coverage here.
Privacy Breach on Bloomberg’s Data Terminals
Amy Chozik and Ben Protess report on what the NYT calls a privacy breach, but is also a security breach, in my opinion: A shudder went through Wall Street on Friday after the revelation that Bloomberg News reporters had extracted subscribers’ private information through the company’s ubiquitous data terminals to break news. The company confirmed…
Regional Medical Center in Memphis notifies 1,200 physical therapy patients after e-mail attachment error
The Regional Medical Center in Memphis (The MED) has disclosed a breach. Adam Hammond of WREG reports: The MED is alerting some patients who were treated at their outpatient facility that their personal information may have been accidentally sent out in one of three emails sent out by an employee. That information includes the social…
Notice to Indiana University Health Arnett patients regarding missing laptop
Indiana University Health Arnett, Inc. (“Arnett”) is committed to maintaining the privacy and security of the personal information provided to us. Regrettably, this notice concerns some of that information. On April 10, 2013, we learned that an employee’s password-protected unencrypted laptop was stolen from the employee’s car the day before. The White County Sheriff’s Office…
Patients sue Montfort Hospital in Ottawa for $40 million following breach
Canadians seem to be getting the hang of this litigation thing. Chris Hofley reports: A group of patients whose personal information was lost is suing Montfort Hospital in Ottawa for $40 million. The suit stems from a lost USB memory stick that contained information on 25,000 patients. The stick was lost in November 2012 before…
Pennsylvania on data breach – shoot first, ask questions later
Blaine Kimrey of Lathrop & Gage LLP has a commentary on a breach notification law that passed the PA Senate. As noted previously on this blog, the bill extends existing data breach notification responsibilities to state agencies, but also requires notification of those affected within seven days. Kimrey writes: After a series of embarrassing governmental…