An Alabama woman has been charged with violations of the HIPAA privacy rule for stealing paper surgery schedules of about 4,500 patients from Trinity Medical Center in Birmingham and intending to use the names, dates of birth and Social Security numbers to commit identity theft.
via Woman Faces Criminal Charges for HIPAA Privacy Violations.
On Tuesday, June 14, 2011, the PCI SSC released an Information Supplement regarding Virtualization Guidelines. Not only does this Information Supplement cover virtualization from a VMware and Hyper-V perspective, but also goes into cloud computing.
via PCI SSC Releases Virtualization Guidelines « PCI Guru.
Thursday, June 2, 2011, we were able to confirm that information taken from RSA in March had been used as an element of an attempted broader attack on Lockheed Martin, a major U.S. government defense contractor. Lockheed Martin has stated that this attack was thwarted
via Open Letter to RSA SecurID Customers.
An Alabama woman has been charged with violating the HIPAA Privacy Rule following allegations that she stole identifying information on about 4,500 patients from Trinity Medical Center in Birmingham
via HIPAA Violation Charged in Records Theft.
Legal experts say a Michigan court ruling over disclosing patient names places tighter restrictions on what information physicians can release during legal proceedings.
The decision also could impact peer review and lead to a rise in lawsuits against health care professionals over patient-privacy violations, they said.
via amednews: Michigan law trumps HIPAA in patient privacy case :: June 6, 2011 … American Medical News.
7 tips to avoid HIPAA violations in social media
via 7 tips to avoid HIPAA violations in social media.
Netflix has fired a call center worker for stealing credit card numbers from customers of the online movie service.
The unnamed employee was fired after Netflix learned about the data theft on April 4, the company said in a letter to the office of the New Hampshire Attorney General that was published online this week
via Netflix fires call center worker for stealing data.
Smaller merchants tend to rely on their acquirer or independent sales organization (ISO) to initiate PCI DSS compliance validation. Without directive or enforcement of such initiatives, many will forgo basic steps to protect their networks and their customers’ cardholder data because they feel they do not have the time or the proper resources, or they’re just not aware of the requirement, the survey found.
via Infosecurity (USA) – Small merchants make up lion’s share of credit card breaches.
Office of Inspector General (OIG) has released two reports that question HHS agencies’ efforts to secure electronic protected health information.
via OIG raps HHS agencies for lax PHI security.
