The need for appropriate access controls to sensitive information is an issue everywhere. ACC is New Zealanders’ government-provided insurance coverage for many personal injury claims. As such, the employees have access to files with personal and often sensitive information. 1News reports: ACC “has work to do” to regain Kiwis’ trust that their private information...
Stephanie Faughnan reports: The Pinelands Regional School District acknowledged last week their investigation of a data breach that included information about personnel and students. In mid-March of this year, Superintendent of Schools Dr. Melissa McCooley received notification from the wife former board president Thomas “Tommy” Williams that her husband would be undergoing an emergency...
CHAPEL HILL, N.C.–(BUSINESS WIRE)–UNC Hospitals announced that it has mailed letters to 719 patients whose information may be at risk for identity theft. On September 10, 2021, UNC Hospitals learned that one of its employees was using patient information for personal financial gain. The employee was responsible for handling payments from patients for services...
Another really serious insider-wrongdoing breach, if the allegations are true. Hayley Crombleholme reports: Salt Lake City Police Chief Mike Brown called allegations that a city employee accessed the names of undercover officers, metro gang files, and other restricted documents “very concerning.” The man was identified in a probable cause document as Patrick Driscoll, an...
Hometown2 reports: An Aultman woman is facing charges in Westmoreland County for accessing information from the state’s anonymous Childline and tipping off a relative in relation to a child welfare probe. The Trib reports that 39-year-old Rebecca D. Walker allegedly accessed the system through her job with the Westmoreland County Children’s Bureau. The report...
Austin Herbaugh reports: A Chico State employee has been charged with criminal hacking after officials say he leaked vaccine exemption requests and personal information from some students. 22-year-old Alejandro Benitez is accused of publishing a list of Chico State students who applied for a religious exemption from the university’s COVID-19 vaccine requirement. Read more...
The following notice by University Hospital in New Jersey is the kind of notification no healthcare entity wants to have to publish. It involves a rogue employee misusing their access to obtain information on patients that may ultimately be provided to personal injury lawyers or those trying to recruit clients or patients who have...
Lorenzo Franceschi-Bicchierai reports: A woman allegedly hacked into the systems of a flight training school in Florida to delete and tamper with information related to the school’s airplanes. In some cases, planes that previously had maintenance issues had been “cleared” to fly, according to a police report. The hack, according to the school’s CEO,...
Samantha Cole reports: Some former OnlyFans support staff employees still had access to users’ data—including sensitive financial and personal information—even after they stopped working for the company used by sex workers to sell nudes and porn videos. According to a former OnlyFans employee who asked to remain anonymous because they feared retaliation, some ex-employees...
Today’s reminder that small breaches may have the biggest impact