DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Lutheran Social Services of Illinois notifies 184,183 of ransomware attack one year ago

Posted on January 27, 2023 by Dissent

On March 25, 2022, Lutheran Social Services of Illinois (LSSI) notified HHS of a breach affecting 1,000 people. The incident, still under investigation by HHS, was coded as a “Hacking/IT Incident”  involving data on the network server.

On January 25, 2023, LSSI notified the Maine Attorney Genera’s Office a breach affecting a total of 184,183 people.

In its newest report, LSSI reports that on January 27, 2022, they discovered they had been hit with a ransomware attack. Almost one year later, on December 28, 2022, they discovered that “certain personal information maintained on our systems was potentially accessed by an unauthorized party from December 31, 2021 to January 27, 2022.”

Based on the timeframe and the fact that this was a ransomware attack, the March 2022 report to HHS was probably just a first report on the incident, although that is somewhat speculative on DataBreaches’ part.

But is the newest report to Maine of 184,183 affected only about patients/clients, or does it include others who would not be reportable under HIPAA? It’s unclear because Maine requires entities report the total number of people affected, whereas HHS only reports the number of patients affected.

LSSI’s notification does not explain why it took them a year from initial event/discovery to figure out who was affected and whom to notify.

 

 

Category: Breach IncidentsHealth DataMalwareU.S.

Post navigation

← Indianapolis Housing Authority breach was worse than originally estimated
Stratford University discloses ransomware attack — but which ransomware attack? →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Banks Want SEC to Rescind Cyberattack Disclosure Requirements
  • MathWorks, Creator of MATLAB, Confirms Ransomware Attack
  • Russian hospital programmer gets 14 years for leaking soldier data to Ukraine
  • MSCS board renews contract with PowerSchool while suing them
  • Iranian Man Pleaded Guilty to Role in Robbinhood Ransomware
  • Developments surrounding data breach at Dutch police
  • Estonia launches international search for Moroccan citizen wanted over data theft
  • Now it’s Tiffany: Another LVMH luxury brand hit by hackers
  • Dutch Government: More forms of espionage to be a criminal offence from 15 May onwards
  • B.C. health authority faces class-action lawsuit over 2009 data breach (1)

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The CCPA emerges as a new legal battleground for web tracking litigation
  • U.S. Spy Agencies Are Getting a One-Stop Shop to Buy Your Most Sensitive Personal Data
  • Period Tracking App Users Win Class Status in Google, Meta Suit
  • AI: the Italian Supervisory Authority fines Luka, the U.S. company behind chatbot “Replika,” 5 Million €
  • D.C. Federal Court Rules Termination of Democrat PCLOB Members Is Unlawful
  • Meta may continue to train AI with user data, German court says
  • Widow of slain Saudi journalist can’t pursue surveillance claims against Israeli spyware firm

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.