Collaborate Disseminate
A DataBreaches opinion piece. You might think a giant insurer like Anthem, which has experienced at least several breaches over the years — including one of the most significant breaches ever — would understand the importance of transparenc… Continue reading Transparency #FAIL: Why won’t Anthem/Elevance Health answer a simple question about breaches?
On August 12, Onyx Technology of Maryland began notifying regulators and others about a ransomware attack they experienced. According to their notification to the Montana Attorney General’s Office on behalf of Independent Care Health Plan (iCare… Continue reading MD: Onyx Technology alerts clients and patients of ransomware incident
There’s an update to a breach reported on DataBreaches that involved both a business associate (Cotiviti) and insider wrong-doing by an employee of a subcontractor of the business associate (Visionary). Humana and Cotiviti agreed to a class actio… Continue reading Humana, Cotiviti settle class action affecting 65,000 members
On August 4, Practice Resources, LLC notified the California Attorney General’s Office that it had been the victim of a ransomware attack on April 12. They also notified HHS that 942,138 patients were affected by the breach (see below). The New Y… Continue reading NY: Practice Resources, LLC notifies 942,138 patients after ransomware attack
Cape Coral Breeze reports: Lee County Emergency Medical Services reports that on Aug. 4 staff received notification of a customer data breach related to a previous third-party vendor responsible for ambulance billing services. Lee County EMS conducted … Continue reading Lee County Emergency Medical Services notifies past customers of third-party security breach
Conifer Revenue Cycle Solutions provided notice on Friday concerning a breach on January 20, 2022, when an unauthorized individual accessed a Microsoft Office 365-hosted business email account. Conifer discovered the breach on April 14, 2022. The emai… Continue reading When 2+2 = OMG: Two hospitals, two breaches each, both discovered in same month.
On July 11, the law firm of Warner Norcross & Judd reported a data breach to the California Attorney General’s Office and other states. This past week, they issued a press release concerning the same incident and also issued a second press re… Continue reading Warner Norcross & Judd notified 120,000 Priority Health Plan members of 2021 breach
Spotted today: a notification by the Renton School District in Washington that they notified 20,509 Washington residents on June 17 dues to a breach that sounds like the Illuminate breach (based on the dates reported by Renton): https://agportal-s3buck… Continue reading Illuminate breach victims are still first being notified
Two potential class action lawsuits involving data breaches have reportedly settled. One awaits final approval in October, but the other settlement is already final. University of Pittsburgh Medical Center data breach $450K class action settlement Duri… Continue reading Data breach lawsuits settle: UPMC vendor and a holding company for department stores
Another day, another leak. Another leak, another entity claiming it’s not real data. Another leak, another frustrating experience trying to responsibly disclose. According to Safety Detectives, they found exposed data related to an app called Tra… Continue reading Leaking Student Data From US Campus App Found — But is It Real?