Sean Lyngaas reports: A sweeping cybersecurity breach of congressional members’ private information was more extensive than previously known and affects not only House lawmakers and their staff but also Senate employees. The Senate sergeant-at-arms alerted Senate staff about the breach Thursday in an email obtained by CNN. The compromised data is “extensive,” and includes sensitive data such…
EPA Requires States to Address the Cybersecurity of Public Water Systems
Ashden Fein, Micaela McMurrough, Caleb Skeath, and Matthew Harden of Covington & Burling write: On March 3, 2023, the United States Environmental Protection Agency (“EPA”) published a memorandum requiring states to evaluate the cybersecurity of operational technology used by public water systems (“PWSs”) “when conducting PWS sanitary surveys or through other state programs.” EPA’s memorandum “interprets the…
PDPC penalizes Eatigo over data protection failures leading to 2020 breach
On October 31, 2020, Eatigo reported a data breach of customer data and that the data had been put up for sale on a popular forum. The Personal Data Protection Commission investigated and found that: the personal data for sale on the online forum did not match any current databases in use by the Organisation…
Cerebral Inc. notifying 3,179,835 patients of tracking technologies breach
Cerebral Inc. has notified HHS of a breach affecting 3,179,835 individuals. They are the latest entity to report a breach due to exposing personal or protected health information data through tracking analytics. According to April Strauss, Esq.: On March 6, 2023, Cerebral began sending emails to users of its platforms, admitting that it uses pixels…
Boonton Police Captain Allegedly Steals Computer Towers, Internal Affairs Records
Frank L. Cahill reports: Attorney General Matthew J. Platkin confirmed charges against a Boonton police captain who allegedly stole his internal affairs records and computer hardware containing police data from the Boonton Police Department. Stephen Jones, 42, of Toms River, has been charged with computer theft, tampering with public records, and other offenses in connection…
Asante Notifies More than 8,800 Patients Whose Records Appeared to Be Inappropriately Accessed by a Physician
Asante provides healthcare services in southern Oregon and northern California. On February 28, it issued a notice about an insider-wrongdoing incident. As they describe it on their site, they became aware of a concern that a doctor with admitting privileges, Dr. Paul Hoffman, may have accessed a number of patients’ records without a valid clinical…