The company not only failed to encrypt electronic protected health information but failed to maintain a security monitoring system that could have flagged supicious and anomalous activity.
A Connecticut-based allergy practice agreed to pay $125,000 this week to settle the disclosure of patient information to a reporter.
More Protected health information (PHI) is leaked by healthcare providers, not hackers, academic research by Michigan State University and Johns Hopkins University released Monday says.
A hospital in upstate New York said it recently discovered a former employee inappropriately accessed patient medical records from 2016 to 2017.
We asked 18 financial services, security and risk management experts how financial services companies can best mitigate risk in the supply chain.
A Texas health plan said an email error resulted in exposed the electronic protected health information of over 8,000 patients.
Big banks and fintechs joined together this week to form a new non-profit, the Financial Data Exchange, a subsidiary of FS-ISAC, designed to promote a consistent standard for data sharing and security.
In a lawsuit filed last week a payment processing company accused its former CEO and several former employees of stealing trade secrets, including customer and banking information, to start a competing business.
The SEC settled a case with the help of a little known 2013 regulation, the Identity Theft Red Flags Rule, for the first time two weeks ago. The rule requires financial institutions to implement a program to detect, prevent, and mitigate identity theft.
Research recently carried out by the Center for Quantitative Health at Massachusetts General Hospital found there have been 2,149 healthcare breaches, impacting 176.4 million patient records, since 2010.