Privacy Briefs: June 2019

By Jane Anderson

◆ Two men were indicted last month in connection with the data breach at Anthem Inc., which siphoned more than 78.8 million customer and employee records between 2014 and 2015. The Department of Justice (DOJ) unsealed an indictment against two people who prosecutors say are part of a sophisticated hacking network group based in China that was behind the Anthem data breach. The group also was involved in attacks against three other U.S. businesses, DOJ said, although it did not name the group or the other three businesses. The two men, one of whom the DOJ named as Fujie Wang, 32, and the other of whom is simply “John Doe” in the indictment, face one count of conspiracy to commit fraud and related activity in relation to computers and identity theft, one count of conspiracy to commit wire fraud, and two counts of intentional damage to a protected computer. The indictment was unsealed in Indianapolis, where Anthem is based. According to the indictment, the defendants used sophisticated techniques to hack into the computer networks of the victim businesses without authorization, and then installed malware and tools to further compromise the networks of the victim businesses. As part of the computer intrusion and data breach of Anthem, the defendants identified and ultimately stole data concerning more than 78 million people, including names, health identification numbers, dates of birth, Social Security numbers, addresses, telephone numbers, email addresses, employment information and income data, according to the indictment. Read the DOJ statement at https://bit.ly/2Q0mqAG.

◆ Washington State University has agreed to pay up to $4.7 million in cash reimbursements, attorneys fees and administrative expenses, plus two years of credit monitoring and insurance services for nearly 1.2 million people in a case involving a stolen hard drive. The hard drive, stolen from a self-storage locker in 2017, included information such as Social Security numbers, names, addresses, career and health data, and college admissions scores. The data had been collected over a 15-year period by the school’s Social and Economic Sciences Research Center. The university also agreed to improve data security as part of the settlement. Learn more at https://bit.ly/2QzaFSh.

This document is only available to subscribers. Please log in or purchase access.
Purchase Login


Would you like to read this entire article?

If you already subscribe to this publication, just log in. If not, let us send you an email with a link that will allow you to read the entire article for free. Just complete the following form.

* required field

First name field cannot be blank!
Last name field cannot be blank!
We will send you an email that will give you access to this entire article.
Email field cannot be blank!
Enter a valid email!
Company field cannot be blank!
Enter a valid company!
Title field cannot be blank!

We're committed to your privacy. The Society of Corporate Compliance and Ethics (SCCE) & Health Care Compliance Association (HCCA) uses the information you provide us to contact you about our relevant content, products, and services. For more information, check out our Privacy Policy.


About SCCE

The Society of Corporate Compliance and Ethics (SCCE) is a non-profit, member-based professional association. SCCE supports our members' work with education, news, and discussion forums. We are a community of leaders, defining and shaping the corporate compliance environment across a wide range of industries and geographic regions. In developing and maintaining effective ethics and compliance programs, our members strengthen and protect their companies.

952.933.4977

About HCCA

The Health Care Compliance Association (HCCA), is a 501(c)6 non-profit, member-based professional association. HCCA was established in 1996 and is headquartered in Minneapolis, MN. We provide training, certification, and other resources to over 10,000 members. Our members include compliance officers and staff from a wide range of organizations, including hospitals, research facilities, clinics and technology service providers.

952.988.0141

Facebook Twitter LinkedIn
Copyright © 2024 by Society of Corporate Compliance and Ethics (SCCE) & Health Care Compliance Association (HCCA). No claim to original US Government works. All rights reserved. All information provided through this site, including without limitation all information such as the “look and feel” of the site, data files, graphics, text, photographs, drawings, logos, images, sounds, music, video or audio files on this site, is owned and/or licensed by SCCE & HCCA or its suppliers and is subject to United States and international copyright, trademark and other intellectual property laws. Any third party logos and/or content provided herein is owned by such third parties and is used by permission herein. Your use of this site to is subject to our Terms Of Use and Privacy Statement.
Cookie settings