A hospital in New York City's borough of the Bronx has agreed to pay $4.75 million and implement a corrective active plan to resolve the U.S. Department of Health and Human Services' claims that Montefiore Medical Center's "multiple" potential data security failings led to an employee stealing and selling thousands of patients' protected health information, the HHS said Tuesday.
An Idaho federal judge has refused to ax the Federal Trade Commission's suit accusing mobile app analytics provider Kochava Inc. of unlawfully selling precise geolocation data, finding that the expanded consumer harm allegations that the agency put forth in its revised complaint were sufficient to allow the dispute to move forward.
Blackbaud Inc. has agreed to delete personal data that it doesn't need anymore and boost its data security to resolve the Federal Trade Commission's claims over a 2020 ransomware attack that affected millions of consumers, the commission announced Thursday, marking the latest regulatory action the software provider has settled over the data breach.
A Texas federal judge has tossed a putative class action accusing a pair of companies that run the athletics website for the University of Texas at Austin of unlawfully sharing video-viewing information with Facebook, finding that the plaintiff didn't qualify as a covered "subscriber" and calling on Congress to step in to resolve an emerging circuit split on the issue.
Officials from Australia, the U.S. and the United Kingdom revealed Tuesday that they had sanctioned a Russian national believed to have played an integral role in a 2022 cyberattack that hit Australian health insurer Medibank Private Ltd., marking the first time the three nations have made such a coordinated strike.