EC: Seguros Equinoccial S.A data keaked by Vice Society On January 28, data allegedly from Seguros Equinoccial S.A. was added to Vice Society’s leak site. Seguros Equinoccial offers various kinds of life, auto, corporate, and other insurance plans to individuals, families, and businesses. Inspection of the leaked data revealed a folder called “bck” with 25…
Nonstop Health data and source code appear to have been leaked on hacking forum
Nonstop Health offers health insurance solutions to employers who have more than 50 employees receiving benefits. Headquartered in Concord, California, and Portland, Oregon, Nonstop Health has business associate agreements with its clients that covers protected health information. On January 17 and 18, data and source code allegedly from Nonstop were leaked on two popular hacking-related…
FL: Tallahassee Memorial hospital victim of suspected ransomware attack
Peter Schorsch reports: Tallahassee Memorial HealthCare is postponing all non-emergency patient procedures as officials manage an Information Technology security issue that occurred late Thursday night, according to a memo from the hospital. The IT security breach is a suspected ransomware attack, according to sources with knowledge of the situation. Read more at Florida Politics. The following…
HHS OCR Settles HIPAA Investigation with Banner Health Following 2016 Hacking Incident
The following is a press release from HHS. It is an update to a 2016 hacking incident previously covered on this site. The incident also resulted in a class action lawsuit that was settled for $6 million in 2019. February 02, 2023 Today, the U.S. Department of Health and Human Services’ Office for Civil Rights…
British Columbia: Mandatory breach reporting and privacy management program requirements now in effect for public bodies
February 1, 2023 Public bodies are now required to develop privacy management programs and report privacy breaches that could be expected to result in serious harm. The new requirements, which were among amendments to the Freedom of Information and Protection of Privacy Act (FIPPA) enacted in November 2021, came into force today. They apply to…
UK: Former employee of Royal Automobile Club prosecuted for data protection violations
A prosecution reported by the Information Commissioner’s Office involving insider wrong-doing: A former employee of the RAC has been prosecuted for obtaining the personal data of individuals involves in road traffic collisions after 21 drivers were harassed by claims companies. Asif Iqbal Khan, 42, was fined £5,000, ordered to pay court costs of £937.40 and…