UK: Bungling contractors throw out 500 confidential documents in Newcastle...
Helen Whitehouse reports: Confidential documents detailing the backgrounds of hundreds of people have gone missing following an office upgrade blunder. Bungling Contractors threw out a locked filing...
View ArticleSome recent additions to HHS’s breach tool
Sometimes it takes a while to find documentation on breaches posted on HHS’s public breach tool. Here are some details on two breaches added to their site this month: Blaine Chiropractic Center – MN On...
View ArticleUncommon Care, PA notifies almost 14,000 patients of Bizmatics breach
Oh my. Another Bizmatics, Inc. client has been first notifying patients of the 2015 breach discovered at the end of 2015. This time it’s Uncommon Care, PA in Texas, and they had to notify 13,674...
View ArticleHack of former DST business exposes Blue Cross Blue Shield member info
This may turn out to be one of the biggest healthcare sector breaches of the year. Kansas City Business Journals reports: Newkirk Products Inc. reported a security breach of personal information for...
View ArticleCarle health system warns of data breach due to vendor error
The Carle health system in Illinois issued this statement regarding a breach due to an unnamed vendor error: Notice to Our Patients Regarding Server Files Carle is committed to protecting the security...
View ArticleMarin electronic medical record system hacked, ransom paid
Richard Halstead reports: Marin Medical Practices Concepts, a Novato company that provides medical billing and electronic medical records services to many Marin physicians, had its computer system...
View ArticleBon Secours notifies 655,000 patients that vendor error exposed patient info...
Bon Secours Health System, Inc. (“Bon Secours”) and its affiliates are committed to maintaining the privacy and security of our patient information. This notice is to inform our patients of an incident...
View ArticleQuest Records LLC breach linked to TheDarkOverlord hacks; more entities...
At the end of June, DeepDotWeb broke the story that hackers calling themselves TheDarkOverlord (TDO) had put three databases with patient information up for sale on the dark net. Although the owners...
View ArticleAthens Orthopedic Clinic incident response leaves patients in the dark and...
On June 26, after learning that databases with patients’ protected health information had been put up for sale on the dark web, DataBreaches.net began investigating and trying to alert the victim...
View ArticleNewkirk Products, Inc. Provides Update to Notice of Data Breach
From Newkirk, notice that another health insurer was also affected by the previously reported breach: Newkirk Products, Inc. (“Newkirk”), a service provider that issues healthcare ID cards for health...
View ArticleFour states’ fishing and hunting licensing sites hacked (update2)
The databases of four state wildlife sporting licensing sites have been hacked, according to an individual who claims to be the hacker. On Monday, an individual calling him/herself “Mr. High” posted...
View ArticleMillennium Hotels & Resorts North America Informed of Potential Data Security...
The Secret Service alerts you, a vendor notifies you… do we really think this is just a “potential” data security incident? Their press release: Millennium Hotels & Resorts North America (MHR) has...
View ArticleOCR closes investigation of Bizmatics, Inc. breach
In doing some of my weekly investigating, I discovered that OCR seems to have closed its investigation into the Bizmatics, Inc. breach that affected an untold number of PrognoCIS customers and their...
View ArticleHarbin Clinic notifies patients that records stored at Iron Mountain are...
Seen on their web site: On August 2, 2016, Harbin Clinic was notified by document storage facility Iron Mountain, Inc., that several boxes of medical records are unaccounted for and/or are missing or...
View ArticleSouthwest Portland Dental notifies patients of Patterson Dental breach
There’s a somewhat interesting follow-up to a situation DataBreaches.net first reported in February. Back then, DataBreaches.net had reported that 22,000 patients from several health care providers had...
View ArticleMilwaukee VA Medical Center announces breach of veterans’ information
Network security breach with Milwaukee VA affiliate September 1, 2016 On August 22, 2016, Medical College of Wisconsin notified Milwaukee VA Medical Center of an incident compromising an MCW employee’s...
View ArticleWA: Highline Medical Center notifies 18,000 patients whose information was...
The R-C Healthcare Management error that resulted in Bon Secours notifying over 655,000 patients that their protected health information had been exposed on the Internet beginning in April also...
View ArticleIt’s 10 pm somewhere. Do you know where your old databases are?
An old database that seems to have magically reappeared online more than a decade after it was removed reminds us of an often-overlooked risk. In January, DataBreaches.net reported that a behavior...
View ArticleThe Mystery of the Reappearing FTP server, Part 2
Earlier this week, in the context of discussing of how old and forgotten databases can come back to bite us in costly databreaches, I reported on a somewhat bizarre situation involving files belonging...
View ArticleVendor to offer protection to those affected by fishing and hunting licenses...
Well, from reading news coverage, I knew this was coming, but here’s the official announcement: ACTIVEOutdoors, the vendor involved in the hack of several states’ hunting and fishing license sites,...
View Article