On December 21, KCI (Kinetic Concepts, Inc.) Health Care Compliance notified the New Hampshire Attorney General’s Office of a security breach involving fraud. An employee in their Texas call center with authorized access to a database containing customers’ payment card data had reportedly misused the information of “several” customers to make purchases in the San Antonio area….
KCI notifies some patients that employee misused their payment cards
On December 21, KCI (Kinetic Concepts, Inc.) Health Care Compliance notified the New Hampshire Attorney General’s Office of a security breach involving fraud. An employee in their Texas call center with authorized access to a database containing customers’ payment card data had reportedly misused the information of “several” customers to make purchases in the San…
As 2010 draws to a close, data breach version
A breach involving paper records just became my last breach post for 2010. It seems somehow appropriate, as breaches involving paper records constitute over 20% of breaches I find out about but they’re often not taken as seriously, it seems, as breaches involving large electronic databases. Yet these types of breaches, which often go unreported,…
Blue Cross Blue Shield Applications Found in Trash
Robert Siciliano writes: Private investigator William Cobra Staubs, was doing some dumpster diving conducting some “research” this week and happened upon a big box of discarded medical files and applications tossed there by what appears to be a Blue Cross Blue Shield agent who didn’t need them any longer. He found over 30 documents and…
Keylogger captured Sovereign Bank customer data
By letter dated December 22, Sovereign Bank’s Chief Privacy Officer notified the New Hampshire Attorney General’s Office of a security breach: On October 15, Sovereign Bank… became of aware of unusual activity based on IP traffic. Upon discovery of the issue, the Bank launched an investigation, and performed due diligence which was completed on December…
Law firm’s credentials misused to access Experian database
Experian has a lot of clients and sometimes those clients’ login credentials fall into the wrong hands. That appears to be the case again. Experian notified the New Hampshire Attorney General’s Office on December 22nd that someone using the access login credentials of the law firm of Samuels, Green, and Steel, LLP had accessed an unspecified…