4.5 Million Patients Exposed in Community Health Services Data Breach

According to multiple reports coming out of Illinois, Chinese hackers have siphoned the personal information of approximately 4.5 million patients out of Community Health Services network.  To put that in context, that’s almost the population of Ireland (4.7 Million). “While the attack certainly generates negative publicity for the company, CHS says it has insurance for […]

Read full story Comments { 0 }

Data Incident Response – You’re Doing it Wrong!

Using a GRC platform, spreadsheet or homegrown system to manage your privacy and security incident response?  You’re doing it wrong!  You need the right tool for the job! About five years ago I walked into a fly fishing shop near me looking for some flies.  At the time I didn’t know much about fly fishing, […]

Read full story Comments { 0 }

7.3 Million New Yorkers Exposed in Data Breaches in 2013

The attorney general of New York recently released a data breach report revealing that over 900 breaches resulted in the exposure of 7.3 million new yorkers sensitive information during 2013.  The breaches at Target and LivingSocial make up the largest chunk of that breached data but with 900 breaches during the whole year, businesses of […]

Read full story Comments { 0 }

Florida Updates Its Data Breach Law – Florida Information Protection Act of 2014

As of July 1st, Florida’s data breach law will have some teeth!  The Florida Information Protection Act of 2014 was just recently signed by Governor Rick Scott and goes into effect July 1st.  Florida’s new law makes it one of the most strict out there, don’t worry California you still hold the crown, and broadens […]

Read full story Comments { 0 }

The Evolving Role of the CISO

The world is changing. The threats are changing. The technology is changing. It makes sense that our roles, our titles and our responsibilities are changing as well and information security officers are no different. “Twenty years ago, when businesses began hiring CISOs, business advantage derived from working with data within the organization. Data lived primarily […]

Read full story Comments { 0 }

Data Breach Fallout

The CEO of Target has stepped down in the aftermath of the huge data breach that hit the retailer last year.  Although not a huge surprise considering how big the breach was, to see such a high profile resignation is a reminder that these incidents have significant business consequences “Target on Monday announced that Steinhafel, […]

Read full story Comments { 0 }

Pencils Down, Hear Come the HIPAA Audits

As HHS begins its’ HIPAA audits this fall, experts have stressed the importance of good documentation.  These “desk audits” are the second generation of HIPAA audits and are expected to be narrower in focus.  The last round of HIPAA audits performed by KPMG set the stage for this years audits. “Common problems from the pilot […]

Read full story Comments { 0 }

Experian Data Breach Gets the Media Treatment

A huge data breach involving Experian which came to light months ago has finally caught the media’s eye. Experian enmeshed in litigation over business that was breached: “Experian Plc is enmeshed in litigation over its 2012 purchase of the assets of data firm Court Ventures, which is at the center of a breach that exposed […]

Read full story Comments { 0 }

Ponemon Report on Patient Privacy and Data Security

The Ponemon Institute just released their 4th Annual Report on Patient Privacy and Data Security sponsored by ID Experts.  The report has some surprising and interesting findings as to the state of healthcare privacy and security: Employee negligence: 75 percent reported employee negligence as their biggest worry, and insider negligence was the root of most […]

Read full story Comments { 0 }

Maricopa Community College Data Breach Update: Lawsuits

The huge Maricopa Community College Data Breach just got a bit messier… here come the lawsuits.  A little background on the breach can be found here. DataBreaches.net reports: Arizona law firm files notice of claim over Maricopa County Community College District breach; class-action lawsuit to follow? The notice of claim for the first client was […]

Read full story Comments { 0 }