Molina Healthcare, a major Medicaid and Affordable Care Act insurer, has shut down its patient portal due to a security flaw that exposed patient medical claims data without requiring authentication. Security researcher Brian Krebs discovered the flaw and notified the company in April. The exposed records include names, addresses, birthdates, diagnosis, medication, and other medically pertinent information. Molina is currently investigating the extent of the breach and has temporarily taken its patient portal offline for further testing of its system security.
T-Mobile pays $16 million fine for three years’ worth of data breaches
T-Mobile has agreed to pay a $15.75 million fine and improve its security in a settlement over a series of data breaches over three years