Readers of PoPville report: “Just applied for the new DC digital SMART Health Card and was sent someone else’s vaccine record?! Hopefully you’re not sending my vaccine card to other random people??” and “Received notification from DCHealth about digital vaccine record. Went to the site and signed up using DOB; PIN; and first and last name. Received…
HIPAA: The Who: Plans, Providers, and Clearinghouses, and the First of the Rule of 3s.
With all the wildly erroneous claims made by people about what is covered by HIPAA, here’s a great explainer by attorney Jeff Drummond on exactly what kinds of entities ARE covered by HIPAA (Spoiler alert: yes, your local bar CAN ask you your vaccination status without violating HIPAA because they are not covered by HIPAA)….
PA: Bible Fellowship Church Homes notifies residents of data security incident
The following press release is not really clear about whether this was a ransomware incident or not, and as yet, we have no numbers for this one. This post may be updated as more information becomes available. WHITEHALL, Pa., Feb. 17, 2022 /PRNewswire/ — Bible Fellowship Church Homes, Inc., dba Fellowship Community (“Fellowship Community”), a faith-based continuing care…
Hackers to face 25 years in jail for cyber attacks on Australia’s national infrastructure
Zach Marzouk reports: Hackers could face up to 25 years in jail if found guilty of cyber offences against Australia’s critical infrastructure, under proposed changes introduced by the government today. The government tabled the Crimes Legislation Amendment (Ransomware Action Plan) Bill 2022 in a bid to modernise criminal offences and procedures to respond to the threat of ransomware….
UK: Confidential patient data breached by ESNEFT staff
Lewis Adams reports: Cases of snooping on confidential patient data at the trust which runs Colchester Hospital are among the highest in the country, figures reveal. East Suffolk and North Essex Foundation Trust reported the country’s second highest figure when it came to staff breaching patient privacy. The Daily Mail revealed today incidents involved nosey…
Cyber-attack on ICRC: What we know
From the International Committee of the Red Cross, an update posted today begins: Update: 16 February 2022, 9 AM CET. Nearly a month has passed since we determined that servers hosting personal data belonging to more than 515,000 people worldwide were hacked in a sophisticated cyber-attack. We are now in a position to share some…