HIPAA trumps state law and permits entity to disclose information in securing payment, and there is no private cause of action under HIPAA: OhioHealth Corp. v. Ryan. h/t, @PrivacyProf
Saudi denies bank info breach by Israeli hackers (updated)
Tarek El-Tablawy reports: A top Saudi banking official on Tuesday denied an Israeli media report that hackers from Israel obtained credit card and bank account details of thousands of Saudi citizens, retaliating for an attack on Israeli accounts. Talaat Hafez, secretary-general of the media office in the kingdom’s banking authority, denied a report by the…
Update: FBI interviews patient about alleged Prime Healthcare upcoding, privacy breach
Karen M. Cheung has more on the Prime Healthcare case, reporting that the FBI has interviewed the patient who gave her records to California Watch. While much of the report concerns the original focus of possible fraudulent billing of Medicare, some of the story concerns the privacy aspects. Reading it, you can understand why Prime…
Cn: CSDN “hack” was an insider leak, and many other reported “hacks” were fabricated leaks – authorities
China Daily reports: Four people have been detained by police and eight others punished after they were found guilty of fabricating a massive leak of online personal data by hackers over the past month in China, the country’s Internet watchdog announced Tuesday. China’s leading anti-virus software provider, Beijing-based Qihoo 360, claimed in late December that…
GA: Man gets a year in prison for hacking, wiping medical competitor's computer
This is a follow-up to a breach reported previously on this blog. As I had deduced, the affected practice was Atlanta Perinatal Associates. The competitor still hasn’t been publicly named, however. Fran Jeffries reports: An Atlanta man has been sentenced to serve a year and a month in prison for hacking into a competing medical…
United beauty hacked and 5000+ accounts dumped by @p0keu
p0keu, has been quiet over the past few months and now has returned with 5000+ accounts being dumped from unitedbeauty.co.uk. which is an online beauty store The accounts was once again stored in plain text and considering the amount of accounts, you would really expect this website to have encrypted passwords. So as stated above, the…