DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

The Vascular Center of Intervention breach — what their notification says and what it didn’t say

Posted on May 25, 2023 by Dissent

On May 24, the Vascular Center of Intervention (VCI) in California submitted a breach notification to California and posted a substitute notice on VCI’s website.

The notification, signed by Dr. James Lee, states that on March 29, VCI became aware of unusual activity on its network. An investigation revealed that some patient-related files had been accessed or exfiltrated between February 25 and March 29. The letter notes that the types of information involved might include one or more of the following for any affected patient: medical history, mental or physical condition, medical treatment or diagnosis by a healthcare professional, date of birth, health insurance information, Social Security Number, and Driver’s license information.

A substitute notice on VCI’s website provides essentially the same information but does not mention that affected patients are being offered 12 months of credit monitoring and identity theft protection services with Cyberscout.

What neither notice states, however, is that this attack involved an extortion attempt by the BianLian group, BianLian claims to have exfiltrated 200 GB of files from VCI’s system.

Part of dark web listing by BianLian claims they have 200 GB of data described as: HR. Accounting Personal data. Business data. Financial data. SQL databases. QuickBooks databases. The screencap also shows links to the first 35 parts of the data dump.
Part of VCI listing by BianLian. Image: DataBreaches.net

BianLian added VCI to its leak site on May 10. The VCI data appear to be dumped on the dark web site in 74 archives, but attempts to access those archives fail each time. Did BianLian really leak the data, or didn’t it?

And why didn’t VCI disclose there was a ransom demand? Why didn’t they warn those affected that the data were being leaked or would likely be leaked on the dark web by BianLian?

This incident is not yet posted to HHS’s public breach tool, so we do not know the number of patients affected. This post will be updated when more details become available.

Category: Breach IncidentsHackHealth DataU.S.

Post navigation

← Norton Healthcare didn’t call it a ransomware attack. Then BlackCat claimed responsibility for it.
NT Health throws breach notification obligations out the window; says patients should call them to find out if they were affected?! →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Comstar LLC agrees to corrective action plan and fine to settle HHS OCR charges
  • Australian ransomware victims now must tell the government if they pay up
  • U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams
  • Victoria’s Secret takes down website after security incident
  • U.S. Government Employee Arrested for Attempting to Provide Classified Information to Foreign Government
  • St. Cloud Provides Update on Ransomware Attack in 2024
  • Bradford Health Systems detected abnormal network activity in December 2023. They first sent out breach notices this week.
  • Websites selling hacking tools to cybercriminals seized
  • ConnectWise suspects cyberattack affecting some ScreenConnect customers was state-sponsored
  • Possible ransomware attack disrupts Maine and New Hampshire Covenant Health locations

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Why AI May Be Listening In on Your Next Doctor’s Appointment
  • Watch out for activist judges trying to deprive us of our rights to safe reproductive healthcare
  • Nebraska Bans Minor Social Media Accounts Without Parental Consent
  • Trump Taps Palantir to Compile Data on Americans
  • The US Is Storing Migrant Children’s DNA in a Criminal Database
  • Home Pregnancy Test Company Wins Dismissal of Pixel Wiretapping Suit
  • The CCPA emerges as a new legal battleground for web tracking litigation

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.