On Monday, the payment details of more than 30 million Americans were put up for sale online by hackers. This data is consistent with records that were stolen from Wawa last year by a malware attack.
Wawa disclosed in December that a major security breach had exposed their point-of-sale systems to a malware program that collected customer payment information. According to Wawa's statement, the malware was allowed to operate for months before detection, ultimately being operational between March and December of 2019.
Wawa has said that the breach impacted each of its 850+ retail locations and could have lead to the compromised data of more than 30 million customers.
The scale of this breach makes it one of the largest data breaches of all time, rivaling Home Depot's 2014 breach that affected 50 million customers and Target's 2013 breach that exposed data from 40 million customers.
Read more about the breach here: https://www.zdnet.com/article/wawa-card-breach-may-rank-as-one-of-the-biggest-of-all-times/
The University of Rochester Medical Center (URMC) will pay $3 million in fines for failure to encrypt mobile devices and other HIPAA violations, it was announced in November.
With more than 26,000 employees, URMC is one of the biggest health systems in the state of New York.
In addition to the $3 million penalty, URMC will be forced to adopt a corrective action plan to address all aspects of noncompliance found in the investigation following the data breach.
You can read the full article here: https://www.hipaajournal.com/
GIS Partner Philip Gow wrote last week about the importance of staying ahead of data and privacy regulations in ITA Pro Magazine. In his article, Gow writes that businesses can not only put their clients at risk, but also their reputation, if they wait to respond to new privacy laws.
Turning a blind eye, Gow continued, could not only mean facing significant fines from regulators, but creating inefficiencies and long businesses processes to achieve compliance in the future as well.
In order to stay prepared and ahead of regulations, Gow recommended companies start their assessment and compliance process immediately, beginning with a review of their current compliance status. From there, Gow recommended companies recruit outside help and promote a general company culture that prioritizes compliance.
Read the full article here: http://www.emagazine.itapro.org/Home/Article/4-Ways-Insurance-Can-Prepare-for-New-Data-Privacy-Laws/2953
A new report from the U.S. Centers for Disease Control and Prevention shows that nearly 1 in 5 family caregivers may be in fair or poor health, going on to describe caregiving as “a public health issue of increasing importance.”
Using data from 44 states, researchers found that 21% of more than 252,000 respondents were caregivers who rated their health fair or poor.
Katherine Ornstein, an associate professor of geriatrics and palliative medicine at the Icahn School of Medicine at Mount Sinai in New York City reviewed the findings and said the health care system needs to start thinking about how to support these caregivers. Specifically, they need to consider what resources and training are needed to do the things they have to do.
Dr. Steven Radwany, a professor in the Division of Palliative Medicine at Ohio State University Wexner Medical Center in Columbus, also reviewed the report and noted that “we have to have the political will to step up and address this.”
The authors concluded that “the potential for losing informal caregivers because of poor health exists and needs to be addressed to support caregivers and expanded offerings that allow caregivers to address their own health concerns.”