Paul Roberts writes: With more and more victims of identity theft minted every day, figuring out if you’re one of the unlucky masses with a leaked email password is yeoman’s work. Now one security researcher is trying to make it easy with PwnedList.com, a Web site that collects leaked and stolen data, then tells Internet users…
Updating some previously reported breaches
HHS has updated its breach tool, which allows me to update a few previously reported breaches: The Texas Health Presbyterian Hospital Flower Mound breach, involving a stolen a laptop, affected 10,345. RxAmerica, named in mailing error glitch that affected Accendo Insurance and Molina Medicare, was also named by Windsor Health Plan in Tennessee in their report to HHS….
Muir Orthopaedic Specialists notify 1,800 patients of stolen binder
Muir Orthopaedic Specialists in Walnut Creek, California, notified 1,800 patients following the July 27 theft of records. The incident, reported to HHS, was also described on the group’s web site in a notice addressed to Dr. Moorthy’s surgical patients between August 2004 and July 2011: On July 27, property of Muir Orthopaedic Specialists was stolen…
Stolen computer contained Henry Ford Health System patient information
Henry Ford Health System in Michigan notified HHS that a computer stolen in August contained protected health information on 520 patients. In an October 10, 2011 statement on their web site, they writ Required Substitute Notice: Infectious Diseases Patients’ Health Information Compromised PATIENT HOTLINE NUMBER: (866) 523-6770 Oct. 10, 2011 Henry Ford Health System is…
Would a federal data breach law really be too costly for the private sector?
Are you curious about the cost of a data breach notification law? Here’s the analysis of S. 1151, the Personal Data Privacy and Security Act of 2011, proposed by Senator Leahy. It appears that the biggest added cost to the private sector would be on improving security and not from breach notification since 46 states already…
PayPal executives’ contact information posted on Pastebin
In what looks to be the first of a number of “name and shame” postings, an individual or individuals posting as “PAYFAIL” have uploaded some personal information on dozens of former and current PayPal executives. In the press release, PayFail writes: In the wake of major corporations trying to silence the voices of those who dare…