Log Cabin Democrat reports: On Nov. 29, 2021, UAMS became aware that a former employee sent emails from her UAMS email to her personal Gmail account with patient information attached on November 15, 2021, while still employed with UAMS. The attachments consisted of Excel spreadsheets used for internal billing compliance auditing purposes and/or billing statements…
Br: Acesso Soluções de Pagamento customers had Pix key data leaked
Abhishek Pratap reports: The Central Bank (BC) reported this Friday (21) that about 160,100 customers of Acesso Soluções de Pagamento had Pix key data leaked. It is not the first time that BC has reported data leakage. Since the launch of the instant payments system in November 2020, this is the second time. The institution…
Some members getting alerted about a September ransomware attack, Charlotte YMCA says
Jonathan Limehouse reports: The Charlotte YMCA is alerting some of its members this week about a data breach four months ago, the nonprofit said Friday. The YMCA of Greater Charlotte, in a news release, said it recently concluded an investigation into a ransomware attack that was detected on Sept. 10. The Y launched its “response…
Valley Regional Transit target of ransomware attack, info may have been compromised
CBS2 reports: Valley Regional Transit says the personal information of some 535 employees, contractors and customers may have been exposed during an October ransomware attack. Valley Regional says the cybercriminals were able to access its network and remove some data before deploying ransomware. The data may have included name, address, date of birth, Social Security…
Sacramento County: Hundreds of personal records exposed in data breach
Jose Fabian provides details on a Sacramento County phishing incident reported to HHS last month: Hundreds of records containing personal information of Sacramento County residents were exposed in a phishing attack last year, the county said. Sacramento County said 2,096 protected health information and 816 personal identifiable records were exposed during a cyber attack on June…
Revised Health Breach Notification Rule resources spell out companies’ legal obligations
Lesley Fair writes: Shoppers can find a plethora of apps, trackers, and sensors that hold or capture almost every conceivable form of personal health information. If your business or nonprofit offers products like that or provides certain services to entities that do – and you aren’t subject to HIPAA – you may be covered by…