A breach at an Ohio firm that helps patients obtain physician-certified medical marijuana cards may have exposed the sensitive information of more than 900,000 of its customers, a law firm investigating the incident said Tuesday.
A Michigan-based health system with more than 70 providers suffered a data breach last year that exposed personal information of almost 140,000 individuals, a law firm said Monday. Two states also recently reported the breach of Aspire Rural Health System. The company may have violated state and federal laws by disclosing the breach well after it occurred.
Farmers Insurance may have suffered a breach that leaked the sensitive information of more than a million customers, a law firm investigating the incident said Monday. Multiple states also reported the breach recently.
The breach and subsequent lawsuit against a winemaker that allegedly compromised the data of 26,000 customers "underscores the vulnerability of companies handling sensitive customer information," McDermott Will lawyers said in a blog post Thursday.
Though protection of customer and consumer data often dominates privacy professionals' conversation, safeguarding sensitive employee information is just as important, said Downs Rachlin lawyers in a blog post Wednesday. "In today’s digital world, keeping your team’s data safe isn’t just a nice-to-have -- it’s absolutely crucial," said Matthew Borick and Jennifer Drake.
Fundamental Administrative Services suffered a data security event that may have exposed the personal data of some of its long-term care residents, the health consultant announced on Friday.
The security of patient data shared with the Trump administration’s HealthTech Initiative will depend on participating companies’ existing controls, not regulation, attorneys at Orrick said Friday (see 2508040021).
Age-verification mandates will increase the number of data breaches, such as the recent incident involving dating safety app Tea (see 2507280017), ACT | The App Association said in a blog post Friday.
Operational technology (OT) owners should create an asset inventory to maintain cybersecurity across all critical infrastructure sectors, U.S. agencies said Wednesday in joint guidance issued with officials in Australia, Canada, Germany, the Netherlands and New Zealand.
Columbia University began sending notification letters Thursday to those whose personal information was impacted during a May cyberattack, according to the university and several state attorneys general who reported the breach. An unauthorized third party, which stole the data, accessed the system in May, though the school discovered the breach as a result of a June 24 tech outage that disrupted IT systems (see 2507030020).