HIPAA Business Associate Pays $2.3 Million to Settle Breach Affecting Protected Health Information of Over 6 million Individuals

September 23, 2020
Dissent

A second big settlement from HHS this week (you can find the first one here). HHS’s press release concerning a case that was previously reported on this site in 2014 follows. The incident also resulted in a class action lawsuit that was settled in 2019. CHSPSC LLC, (“CHSPSC”) has agreed to pay $2,300,000 to...

US cybersecurity agency issues super-rare emergency directive to patch Windows Server flaw ASAP

September 22, 2020
Dissent

Robbie Harb reports: Uncle Sam’s Cybersecurity and Infrastructure Security Agency (CISA) has taken the unusual step of issuing an emergency directive that gives US government agencies a four-day deadline to roll out a Windows Server patch. The directive, issued on September 18, demanded that executive agencies to take “immediate and emergency action” to patch CVE-2020-1472, the...

Top Australian tenancy blacklist firm under investigation by information commissioner

September 22, 2020
Dissent

Ben Butler reports: The federal information commissioner is investigating a potential data breach at one of Australia’s biggest tenancy blacklists, run by Sydney company Trading Reference Australia (TRA). TRA has moved to stymie the investigation, obtaining a federal court injunction that quashes an order from the commissioner that it hand over information about the...

Member of thedarkoverlord sentenced to 60 months and $1.4 million in restitution

September 21, 2020
Dissent

The first — and so far, only — person to have been arrested and charged as a member of “thedarkoverlord” pleaded guilty today in federal court in Missouri. Nathan Francis Wyatt, 39, of Wellingborough, Northamptonshire in the U.K. was sentenced by Judge Judge Ronnie L. White to 60 months in prison and almost $1.5...

Athens Orthopedic Clinic Pays $1.5 Million to Settle HHS Charges of Systemic Noncompliance with HIPAA Rules

September 21, 2020
Dissent

From HHS, a settlement notice involving one of thedarkoverlord’s victims. Athens Orthopedic Clinic is still facing a lawsuit from patients that made it all the way up to the Georgia Supreme Court on the issue of whether they had demonstrated enough harm to survive a motion to dismiss. Note: This blogger is the journalist...

DataBreaches.net

DataBreaches.net

Of Note

HIPAA Business Associate Pays $2.3 Million to Settle Breach Affecting Protected Health Information of Over 6 million Individuals

US cybersecurity agency issues super-rare emergency directive to patch Windows Server flaw ASAP

Top Australian tenancy blacklist firm under investigation by information commissioner

Member of thedarkoverlord sentenced to 60 months and $1.4 million in restitution

Athens Orthopedic Clinic Pays $1.5 Million to Settle HHS Charges of Systemic Noncompliance with HIPAA Rules