I’ve been looking for an English language report on the new breach guidelines in Belgium and finally found one. Cédrine Morlière and Ludo Deklerck of Bird & Bird write: When the data breach results in a “public incident” (when a data breach results in a public leakage of private data), according to the guidance, the…
Dismissing a student for blogging about patients – free speech v. confidentiality agreements in the Sixth Circuit
Long-time readers may remember the case of Nina Yoder, a nursing student who was expelled from the University of Louisville School of Nursing [SON] in 2009 for allegedly breaching the honor code and confidentiality agreements she had signed by her posts on MySpace. A district judge had ordered her reinstatement in August 2009, and Yoder…
Hospital says credit card information for 2K patients possibly compromised
The compromise at web hosting firm E-dreamz, reported here earlier today, didn’t affect only Presbyterian Anesthesia Associates. According to Torie Wells, approximately 2,000 patients of Piedmont Healthcare were also affected: We were told that E-dreamz databases had been compromised and that credit card data of a number of our patients had been exposed,” said Gregory Guin,…
More details from Presbyterian Anesthesia Associates breach
HealthITSecurity.com has obtained more details on the breach affecting almost 10,000 patients of Presbyterian Anesthesia Associates. Apparently the data were encrypted, but the encryption key was acquired by whomever attacked the E-Dreamz server hosting the practice’s database.
$200,000 suggested for SCDOR hacking compensation fund
Andrew Shain reports: South Carolina should set aside $200,000 next year for a fund to compensate victims of the massive computer hacking at the S.C. Department of Revenue, state Sen. Vincent Sheheen and state Treasurer Curtis Loftis proposed Tuesday. The fund would be administered like the state’s unclaimed property operation, headed by the treasurer’s office….
No damages? Illinois federal court tosses Computer Fraud and Abuse Act claim alleging hacking of law firm network
Paul Freehling of Seyfarth Shaw LLP writes: An Illinois federal court recently found in the favor of the defendant on a plaintiff’s Computer Fraud and Abuse Act claim because the plaintiff allegedly failed to satisfy the statute’s $5,000 damages threshold. The plaintiff, a computer consulting servicing company which spent time restoring its client’s computer network…