Griffin Hospital in Derby, Connecticut issued this statement today on its web site: Griffin Hospital has notified 957 patients of an apparent breach of personal protected health information during the period from February 4, 2010 to March 5, 2010 after an investigation prompted by patient inquires revealed the breach. Based on information available to it,…
(follow-up) St Albans City and District Council takes action after voters’ details stolen
The Information Commissioner’s Office (ICO) has found St Albans City and District Council in breach of the Data Protection Act. A laptop was stolen which was used to store postal voters’ records as part of an election process in June 2009. The personal information, which was password protected but unencrypted, remained on the laptop when…
Thousands of stolen bank account numbers seized in Ontario
Karen Mullins reports: Police have seized thousands of bank account numbers stolen by an identity theft ring and charged six people with 80 criminal offences. Durham Regional Police and the Ontario Provincial Police have been working almost a year to bust up an ATM tampering ring in an operation dubbed Project Kaiser. […] During the…
Three newly revealed breaches affect over 20,000
Cross-posted from PHIprivacy.net: The new HHS/OCR web site has added three more breach reports: Montefiore Medical Center State: New York Approx. # of Individuals Affected: 625 Date of Breach: 2/20/10 Type of Breach: Theft Location of Breached Information: Laptop Private Practice City and State: San Antonio, Texas Approx. # of Individuals Affected: 21,000 Date of…
Federal Information Security and Data Breach Notification Laws
From Congressional Research Service: Federal Information Security and Data Breach Notification Laws Gina Stevens Legislative Attorney January 28, 2010 The following report describes information security and data breach notification requirements included in the Privacy Act, the Federal Information Security Management Act, Office of Management and Budget Guidance, the Veterans Affairs Information Security Act, the Health…
JC Penney, Wet Seal: Gonzalez Mystery Merchants
While major news sources rushed to report yesterday that Albert Gonzalez was sentenced yesterday to 20 years plus one day for the Heartland Payment Systems breach, a term to run concurrently with his other sentence, Brooklynne Kelly Peters and Evan Schuman of StorefrontBacktalk led with providing the answer to a question many of us had:…