Lamar County School District: 28 employees’ personal information exposed in...
Jacque Masse reports on another breach that is linked to Innovak: Some Lamar County School District employees’ had their personal information compromised after an employee portal experienced a data...
View ArticleMore than 100 Randolph College employees report recent identity theft (Updated)
Tim Saunders reports: More than 100 people who work for Randolph College in Lynchburg have encountered problems this year while trying to file their tax returns. That’s because their personal...
View ArticleUniversity employees vulnerable after tax data breach involving W-2 vendor
Hannah Knowles reports that a breach involving a W-2 vendor has left employees in the education sector at risk of tax refund fraud. This time, it’s W-2 Express and Stanford University, although other...
View ArticleUS jury fines Tata Consultancy Services $940m for healthcare software ‘theft’
Speaking of a contractor’s employees exceeding authorized access, Chidanand Rajghatta reports that a Wisconsin federal jury slapped a $940-million penalty, including $700 million in punitive damages,...
View ArticleAlabama CVS’ patient information at risk after laptop stolen
Kelly Poe reports: A laptop that contained prescription and patient information on customers of a CVS Pharmacy in Calera has been stolen. CVS learned on March 22 that the password-protected laptop had...
View ArticleFourteen school systems impacted by Innovak Intl breach – IRS
So Innovak International never responded to my inquiries, but an IRS investigator reportedly told others that 14 school systems – three in Alabama and 11 in Mississippi – were impacted by their breach...
View ArticleDenver Archdiocese payroll system breached, 18,000 at risk
So which vendor was responsible for this one? The archdiocese wouldn’t answer that question when I put it to them…. Tom McGhee reports: Authorities are investigating a data breach at the Catholic...
View ArticlePain Treatment Centers of America notifies 19,397 patients of Bizmatics breach
Ouch. The Pain Treatment Centers of America and Interventional Surgery Institute in Arkansas have been notifying HHS and 19,397 patients about a security incident involving their vendor, Bizmatics. I...
View ArticleRaleigh Orthopaedic Clinic settles HHS/OCR charges over failure to have BAA...
HHS has announced another enforcement action. This one stems from an investigation into a breach noted on this site in May, 2013. Raleigh Orthopaedic Clinic, P.A. of North Carolina (Raleigh...
View ArticleContractor charged with damaging Reserve pay software
Kevin Lilley reports: The “glitch” that delayed Army Reserve paychecks for an average of 17 days in late 2014 now has an alleged face. Mittesh Das, a civilian contractor, could face 10 years in prison...
View ArticleChicago medical records exchange sues IT vendor
Joseph Conn reports: The hospital association that operates a major Chicago-area health information exchange is suing its health information technology vendor that abruptly announced it will go out of...
View ArticleTampa International Airport infosecurity breach spurred probe
Yvette C. Hammett reports: A consultant working to upgrade Tampa International Airport’s computer system last year caused concern among some airport employees about a potentially serious security...
View Article2,400 members’ info stolen, Kaiser Permanente says
Nereida Moreno reports: A mail delivery truck carrying the personal information of 2,400 Kaiser Permanente members on the Inland Empire Health Plan was stolen last month from a parking lot in Santa...
View ArticleNY: Tax refund fraud reported by Stony Point employees under investigation
It looks like employees of yet another town may have become victims of tax refund fraud, and the town is trying to determine the cause. This time, the report comes from Stony Point, New York, where 30...
View ArticledōTERRA letter informs customers of possible data breach
McKenzie Romero reports: A letter sent to customers and distributors from doTERRA, the Utah-based essential oil company, is warning that an apparent data breach last month may have compromised their...
View ArticleAnother Greenshades client discloses breach of employee info
Add University of the Southwest to your list of those notifying current and former employees that their W-2 or payroll information was accessed without authorization from their vendor, Greenshades. But...
View ArticleSettlement reached in lawsuit after laptop stolen from Edmonton Medicentre
Bill Mah reports that a lawsuit filed after a 2013 Medicentres breach has settled. The incident involved a laptop with information on 620,000 Albertans being stolen from the clinic. The laptop belonged...
View ArticleFlorida Hospital Medical Group notifies patients after transcription service...
Florida Hospital Medical Group recently notifed HHS of a breach affecting 1,906 patients. Although the breach reportedly involved a transcription service, the entry on HHS’s public breach tool does not...
View ArticleStanford University continues to investigate breach involving employee W-2 data
There’s been an update to a previously noted breach report out of Stanford University. On April 12, I had reported that compromise of employees’ W-2 data had been linked to the university’s service...
View ArticleStolen billing vendor’s laptop held patient info from 8 medical facilities
EqualizeRCM Services is a vendor providing billing and collection services to healthcare providers. In compliance with HIPAA, it has Business Associate contracts with its clients, who provide it with...
View Article