In a refreshingly straightforward breach disclosure, Sentara Health in Virginia reports that on December 19, an anonymous individual called their Compliance Hotline to alert them that while searching for something online, the called had stumbled across an exposed file with patients’ Medicare billing information. Sentara quickly verified the caller’s report and determined that the file…
Hong Kong: Data Security Measures Guidance published by the PCPD
Anna Gamvros (HK) and Edward Yau (HK) of Norton Rose Fulbright write: As data breaches and cyber attacks continue to surge and attackers become more sophisticated, organisations are well aware that the need for robust data security measures is becoming increasingly important. In Hong Kong, the Office of the Privacy Commissioner for Personal Data (the PCPD)…
Supreme Court Hears Healthcare Identity Theft Case
Marianne Kolbasuk McGee reports: Justices on the U.S. Supreme Court seem ready to restrict federal prosecutors’ use of a federal law criminalizing identity theft after hearing a case challenging its application in a Medicaid fraud case. Traditional identity theft involving appropriation of personal information for criminal ends, such as obtaining fraudulent prescriptions or submitting fake…
Piles of confidential ANZ bank documents found ‘floating down the street’ after they were carelessly dumped in a skip bin on a busy street
Brett Lackey reports: Piles of confidential documents containing the personal details of ANZ customers have been found thrown in a skip bin on a busy street by someone walking by. Scott Collins, 26, was walking near Armadale Central Shopping Centre, in Perth’s south-east, when he noticed the papers overflowing from the bins which were being used…
Another Texas school district with a data breach? (UPDATED)
LockBit has added White Settlement Independent School District in Texas to their leak site, with a proof pack that suggests that the threat actors were able to access — and may have exfiltrated — a lot of files. The listing was added yesterday. There is no notice on WSISD’s website that DataBreaches could find…
U.S. Marshals Service suffers ransomware breach that compromises sensitive information, senior law enforcement officials say
Andrew Blankstein, Michael Kosnar, Jonathan Dienst, and Tom Winter report: The U.S. Marshals Service suffered a security breach over a week ago that compromises sensitive information, multiple senior U.S. law enforcement officials said Monday. In a statement Monday, U.S. Marshals Service spokesperson Drew Wade acknowledged the breach, telling NBC News: “The affected system contains law enforcement sensitive information, including returns from…