HealthEquity, a US fintech firm for the healthcare sector, admits that a “data security event” it discovered at the end of June hit the data of a substantial 4.3 million individuals.
Stolen details include addresses, telephone numbers and payment data.… The incident began in March but was only detected in June. The company said in a letter to those affected that it received an alert on March 25 about a “systems anomaly requiring extensive technical investigation and ultimately resulting in data forensics” and that work continued until June 26 – the point at which it became aware that criminals had stole sensitive data.
Read more…
Source: MSN New
Related:
- Got Effective Cybersecurity Practices? Be Aware: The FTC Is Watching You
February 20, 2017
Following a July ruling against medical testing laboratory LabMD (which is now out of business), the Federal Trade Commission has emerged as a central regulator of cybersecurity practices for U.S. businesses. The FTC’s mandate to act on “unfair or deceptive” business practices that could harm consumers is being interpreted in a way that means any ...
- States vie for Israeli cyber security investment as CyberGym heads downunder
February 20, 2017
State governments are jostling to win a major cyber security investment from the multibillion-dollar Israeli government-owned electricity company, as the business implications of Prime Minister Benjamin Netanyahu’s first Australian visit begin to take shape. Ofer Bloch, chief executive of the Israel Electric Corporation (IEC), was in Australia with the Prime Minister’s accompanying delegation of business leaders ...
- Study reveals cybersecurity readiness gaps in US oil and gas industry
February 16, 2017
A survey of US oil and gas cybersecurity risk managers indicates that the deployment of cybersecurity measures in the industry isn’t keeping pace with the growth of digitalization in oil and gas operations. In a study from the Ponemon Institute – The State of Cybersecurity in the Oil & Gas Industry: United States – just ...
- Government Needs To Take Immediate Actions To Strengthen US Cybersecurity, GAO Says
February 14, 2017
Testifying before the House Subcommittee on Research and Technology, Committee on Science, Space and Technology today, Gregory C. Wilshusen, Director, Government Accountability Office (GAO) Information Security Issues, warned GAO “has consistently identified shortcomings in the federal government’s approach to ensuring the security of federal information systems and cyber critical infrastructure, as well as its approach to protecting ...
- Cybersecurity alliance promoting intel-sharing seeks to expand
February 14, 2017
Hackers have probably had a harder time slipping past your security software, thanks to an alliance between some of the top vendors in the industry. The Cyber Threat Alliance, a group of security firms that often compete, says its efforts to share intelligence on the latest hacking threats have been paying off. Rivals including Fortinet, Intel Security, ...
- Incident Response Plans: A Comparison of US Law, EU Law and Soon-To-Be EU Law
February 3, 2017
The best way to handle any emergency is to be prepared. When it comes to data breaches, incident response plans are the first step organizations take to prepare. In the United States, incident response plans are commonplace. Since 2005, the federal banking agencies have interpreted the Gramm-Leach-Bliley Act as requiring financial institutions to create procedures for ...