Penn Mutual Life Insurance reports that a former employee may have accessed and disclosed customer information. Through their lawyers, Penn Mutual informed the New Hampshire Attorney General’s Office on February 1 that despite their forensic efforts, they were not able to determine definitively which customer accounts were improperly accessed, but they believe that the employee…
Access privileges error on Chapman University file allowed viewing of file with sensitive student information
On February 15, officials at Chapman University were informed that a document that should have been secured was available to authorized logged in system users who were not authorized to see that document . The university immediately secured the document by correcting the access privileges, and on February 22, notified the New Hampshire Attorney General’s…
Virginia Man Pleads Guilty to Conspiracy and Credit Union Fraud
Darnell M. Barnwell, 25, of Norfolk, Va., pleaded guilty on March 4 in Norfolk federal court to conspiring to defraud the Navy Federal Credit Union (NFCU) and to committing credit union fraud. Barnwell faces a maximum penalty of 60 years in prison and a fine of $2,000,000.00 when he is sentenced on June 6, 2011….
SC: Midlands Tech warns employees of security breach
Wayne Washington reports: Midlands Technical College warned employees last month that a flash drive containing some of their personal information was taken from a human resources office at the college. The flash drive, since returned — without the personal data it previously held — could compromise the personal information of some of the college’s 500…
NB Privacy commissioner probes storage of medical records
Tammy Scott-Wallace reports: The province’s access to information and privacy commissioner has launched an investigation into the proper safekeeping of medical records in light of concerns in the Sussex area. Last month patients of Dr. Cathy Hurd, who left her practice in Sussex before Christmas to work outside the province, were outraged when they received…
PR for EHRs: More to the Story Than Data Breaches
Gienna Shaw reports: […] It doesn’t matter how many or how few times a healthcare organization’s data is breached or even if it is only potentially breached. In the healthcare industry, it takes just one event—a lost laptop, a misfired e-mail, or a website that leaks sensitive, user-specific data—to make headlines. […] Stories in the…