Wednesday, August 12, 2015

Lost UCLA data may be gain for someone

From the Daily Bruin:

A Los Angeles man filed a class action lawsuit against UCLA Health, alleging the health care provider did not adequately store private medical information of about 4.5 million patients during the recent cyber attack, a law firm announced Tuesday. Miguel Ortiz filed the complaint against UCLA Health, UCLA Medical Sciences and University of California Board of Regents in the Los Angeles County Superior Court on July 29. He and his family were patients at UCLA Health during the time of the cyber attack. The lawsuit seeks for UCLA to engage third party security auditors and internal security personnel to test computer systems on a periodic basis according to industry standard practices, and take other security and preventative measures. Ortiz also seeks monetary relief for any damage caused by the cyber attack. This is the second lawsuit filed by a patient since the attack. Another UCLA Health patient, Michael Allen, said in his lawsuit that he seeks monetary or statutory compensation and relief for patients affected by the attack from UCLA Health and the Board of Regents...

The lawsuit stated that though UCLA knew of its history of data breaches, it not take the adequate steps to safeguard patient information. In addition, the lawsuit asserted that by failing to invest in adequate security and take basic steps to protect information, UCLA Health failed to perform its duty to patients. The lawsuit accused UCLA of waiting eight months to notify patients of the attack. UCLA declined to comment further on these matters...

Full story at

Yours truly continues to advise freezing access to your credit at the three credit rating agencies. It's not hard to do. It is a bit of a hassle to arrange a temporary unfreezing if you need to do something such as acquire a new credit card, mortgage, etc. But it is doable and less of a hassle than having your ID stolen. 

No comments: