Russian Malware called “SoakSoak” has infected around 100,000 WordPress sites over the past 48 hours, turning blogs into platforms from which the Malware is infecting other users.
The issue seems to be limited to user-hosted WordPress websites that are utilizing the third-party WordPress plug-in RevSlide. To read more about this development, click Here.
While the Target, LinkedIn, and Home Depot data breaches have gathered significant media attention, major retail providers and businesses as we usually think of them aren’t the only ones with sensitive data. Just as alarming as the fact that these companies suffered data breaches is the fact that hospitals and other medical providers are also under attack from hackers. Even more terrifying than having your personal financial information in the hands of an unauthorized party is that they could have your medical records.
Many people consider their medical records far more personal and sensitive than their financial information, and for good reason – our private health information is intimately personal, and it should remain that way. Companies have a duty to safeguard your health information and should be held responsible for breaches in their data systems. Computer and data forensics can trace data breaches to determine how the breach occurred.
If your hospital, physician, or other medical provider has suffered a data breach, just like in the case of PII, PHI disclosures must be made to the party whose information was compromised, under the Louisiana Data Breach Notification Law, La. R.S. § 51:3071 et seq.
If you’ve received notice of a data breach from your physician, you might be entitled to recovery under the law. Contact me to protect your rights if you’ve received notification of a data breach involving your medical records from your physician or hospital.
“Data breach” refers to an incident whereby an individual, application, or service accesses, views, or retrieves data, illegally or without authorization. Data breaches are security breaches that are specifically designed to steal data and publish that information in an unsecured location or utilize that information in an unauthorized manner. Affected information can include personal identifiable information (known as PII; includes information such as an individual’s name, date of birth, social security number, credit/debit card numbers, account login credentials, driver’s license numbers; responsible for 57.2% of data breach claims), personal health information (PHI; responsible for 27.2% of data breach claims), trade secrets (responsible for 1.4% of data breach claims), or other information.
NOLA Contendere 