The University of Alberta Hospital is reporting that a burglary occurred earlier this month resulting in two laptops containing patient information being stolen. Alberta Health Services said the theft happened on June 4th, in the hospital’s Provincial Lab Information Technology room. Two laptops with health information of more than 300,000 people were stolen. Information on…
NYS Worker Pleads to ID theft
As a follow-up to an insider breach reported in April, Walter Healey, a former employee of New York State’s Department of Taxation and Finance pleaded guilty to stealing the identities of taxpayers and will now have to pay restitution and serve 1 ½ to 4 years in prison upon sentencing in October. AP also provides…
FBHive.com Facebook Exploit
Here’s how they did it, below. Facebook has since secured the site against this exploit: Facebook Basic Information Exploit from FBHive on Vimeo.
FTC Approves Consent Order in CVS Case
Following a public comment period, the Commission has approved a final consent order in the CVS Caremark case involving failure to adequately secure customers’ medical and financial data. Prior coverage of the case can be found here. Additional documents on the case can be found here. According to the complaint, CVS Caremark did not implement…
FTC Approves Final Consent Order in CVS Caremark Case
Following a public comment period, the Commission has approved a final consent order in the matter of CVS Caremark Corporation, a case previously reported on this site that involved the hugest fine levied, to date, for a HIPAA violation. Additional documents on the case can be found here. Of particular interest (to me, anyway) was…
Analysis of Savvis’ Motion to Dismiss Lawsuit
David Navetta has written a clear and helpful analysis of Savvis’ motion to dismiss Merrick Bank’s lawsuit against Savvis, arising out of the CardSystems Solutions breach.