Equifax service remains mum about client reports of tax refund fraud
Back in April, DataBreaches.net noted that Stanford University was notifying its employees about tax refund fraud. The fraud appeared to result from perpetrators downloading employees’ W-2 information...
View ArticleCa: 77K accounts of Financial Giant, State Farm, leaked due to DAC Group Hack
Ryan de Souza reports: DAC Group, a Toronto-based digital & content marketing agency has suffered a security breach on their server resulting in data theft of 93,000 customer accounts — In normal...
View ArticleData Breach at Annapolis Parking Garages Possible: City
Jennifer van der Kleut reports: Annapolis government officials are warning of a potential data breach of customer information at three local parking garages. Annapolis Mayor Michael Pantelides issued a...
View ArticleSour grapes? Santikos sues former San Antonio vendor in phone hacking case
Patrick Danner reports: Santikos Theaters Inc. is suing CBS Telephone & Data after the former vendor allegedly sought revenge for a canceled contract by hacking into the movie house’s computerized...
View ArticleIn: Sec V techie held for data theft
Dwaipayan Ghosh reports: Kolkata: A BTech engineer working in a Sector V firm was arrested by the Bidhannagar cyber fraud wing for allegedly cheating on the US-based clients of another city-based IT...
View ArticleTexas Health & Human Services Commission notifies 600 after contractor can’t...
The Texas Health & Human Services Commission posted this notification to their site on June 17: The Health and Human Services Commission is notifying people about the accidental loss of protected...
View ArticleSwing and a miss? Topps apps database leaked fans’ info
When security researcher Chris Vickery was unable to get sports trading card giant Topps to respond to his notification that a database was exposing mobile apps fans’ information, DataBreaches.net...
View ArticleMercy Medical Center Redding notifies patients after discovering NaviHealth...
Typically, when an entity posts a link to a security breach notification on their web site, it’s a normal or small font. If you’re lucky, it’s positioned so that you stand a chance of spotting it...
View ArticleFrench police hit by security breach as data put online
BBC reports: The personal details of 112,000 French police officers have been uploaded to Google Drive in a security breach just a fortnight after two officers were murdered at their home by a...
View Article264,000 and counting: Hack of EHR/EMR vendor leaves clients scrambling
What data security incident currently holds the undesirable status of 2016’s largest incident involving patient data that has been reported to HHS?* There’s a good chance you’ve never heard about it...
View Article19 House Democrat Websites Have Been Down For Days, Hacked Following Sit-In
Ted Goodman reports: Hackers took over 19 official government websites for Congressman since last Thursday after a major hacking incident compromised the network. The affected representatives contract...
View ArticleBusiness Associate’s Failure to Safeguard Nursing Home Residents’ PHI Leads...
This works out to over $1570 per record. Catholic Health Care Services of the Archdiocese of Philadelphia (CHCS) has agreed to settle potential violations of the Health Insurance Portability and...
View ArticleUK ‘Serious Incident’: East Riding patients medical records lost by company...
As reported in the Hull Daily Mail: Medical records for patients in the East Riding have been lost by a firm paid by health bosses to keep them safe in storage. East Riding Clinical Commissioning Group...
View ArticlePhysician took work home, and there it stayed after his employment terminated...
Here’s a breach that was actually disclosed in June, but first was posted to HHS in July. Kudos to HIPAAJournal who found their statement on their website when my old eyes missed the small print. You...
View ArticleYet another entity first notifying patients of Bizmatics, Inc. breach
So it appears that Bizmatics, Inc. has continued notifying entities of their 2015 breach. I stumbled across this one today from Arkansas Spine and Pain. We have been notified by our electronic medical...
View ArticleLeaky database leaves Oklahoma police, bank vulnerable to intruders
Dell Cameron reports: A leaky database has exposed the physical security of multiple Oklahoma Department of Public Safety facilities and at least one Oklahoma bank. The vulnerability—which has...
View ArticleKR: Credit card companies fined over customer data protection failures
For the past few years, I’ve covered the consequences Kookmin, NongHyup, and Lotte Card have faced after cardholders’ information was stolen by an contractor’s employee over an 18-month period from...
View ArticleMO: A second TheDarkOverlord target confirms hack
In the past 24 hours, two of TheDarkOverlord’s targets have publicly acknowledged breaches previously reported by this site. Yesterday, it was the Athens Orthopedic Clinic in Georgia who issued a...
View ArticleUnauthorized employee accessed AnMed Health patient records, release says
Carla Field reports: A health care revenue company says one of its employees looked at nearly two dozen patient records without authorization. Cardon Outreach does contract work for AnMed Health, and...
View ArticleAnother Bizmatics client notifies patients of breach
We’re still learning of other Bizmatics clients who were notified that their patient data may have been acquired by criminals. Lifewellness Institute in California notified HHS this month that they had...
View Article