Mastodawn

The second part of my interview with Rachel Seeger of North Country Communications is now online. If you know any HIPAA-regulated SMBs struggling with compliance issues or seeking great information and advice, point them to Rachel's consultancy.

HIPAA Compliance and Breach Communications: Helpful Tips for SMBs:
https://databreaches.net/2026/01/06/hipaa-compliance-and-breach-communications-helpful-tips-for-smbs/

or download a copy od the interview:
https://databreaches.net/wp-content/uploads/HIPAA-Compliance-and-Breach-Communications.pdf

Direct link to North Country Communications: https://northcountrycommunications.com/

#HIPAA #compliance #BreachNotification #PrivacyRule #SecurityRule #BusinessAssociates

HIPAA Compliance and Breach Communications: Helpful Tips for SMBs – DataBreaches.Net

Published by DataBreaches.net in collaboration with North Country Communications, LLC. January 6, 2026 On December 15, North Country Communications launched a

DataBreaches.Net

Defensorum Jun 18, 2025

🚨 HealthEC faces multiple class action lawsuits over 4.5M patient breach 💻 took 5+ months to notify affected patients 📊 4.5M patients affected across multiple healthcare organizations 💰 Lawsuits claim breach of contract and negligence #DataBreach #Healthcare #PatientRights #HIPAA #BreachNotification 👉 https://www.defensorum.com/class-action-lawsuits-healthec-data-breach/

Class Action Lawsuits Filed Over HealthEC Data Breach - Defensorum

HealthEC LLC faced multiple class action lawsuits because of a data breach that affected about 4.5 million people. Hackers acquired access to the population health management system of HealthEC from July 14 to July 23, 2024, and acquired the sensitive information of patients of its healthcare company clients. The plaintiff Victoria Lempinen and similarly situated ... Read more

Defensorum

kaspa Aug 18, 2024

Do you feel companies are held responsible in today's data breaches?

#infosec #privacy #cybersecurity #breach #ChangeHealthcare #breachNotification

Yes

19%

No

81%

Poll ended at Aug 19, 2024 at 4:21pm.

Jonathan Kamens 86 47 Aug 18, 2024

Happy #ChangeHealthcare #breachNotification to all who celebrate!
We got ours yesterday. When did you get yours?
There's too much for alt text, so I've posted a PDF with text at https://drive.google.com/file/d/1TcFGL-MuuMArhCISNM5MmT3yvtYpkGr-/view.
(There are 4 more pages in the reply.)
This is the worst breach notification I've seen in a long time.
Of note: because Change Healthcare does everything badly, you have to call them to get the free credit monitoring; there's no way to do it online.
#infosec #privacy #cybersecurity #breach

breach_ocr.pdf

Google Docs

Jonathan Kamens 86 47 Jul 18, 2024

This #breach notification email from #TicketMaster is BULLSHIT.
#infosec #privacy #BreachNotification

Kenton Riley May 8, 2023

Haven't seen it on their site (or any of the news sites yet), but #Sysco sent an email notification about a data #breach over the weekend to some of their customers/delivery drivers. #breachnotification
https://www.reddit.com/r/Truckers/comments/13944vt/sysco_data_breach/

Each email contained a link & code for 2 years of Experian monitoring along with the following description of the incident:

**What Happened?
On March 5, 2023, Sysco discovered that it was the target of an organized cybersecurity event in which a threat actor gained access to our systems without authorization and claimed to have acquired certain data. While we have not yet fully validated these claims, we have determined that confidential information about our business, including some personal information about our customers, has been impacted.

**What Information Was Involved?
This information may include confidential information relating to our business relationship and personal information that may have been provided to Sysco such as name, social security number, account numbers or similar information necessary to do business with us.

**What We Are Doing.
Upon discovery of the event, Sysco immediately opened an investigation in partnership with a leading cybersecurity firm and other experts. We also notified federal law enforcement.