Update of February 10, 2023: This incident reportedly affected 617,000 patients. It is not showing up on HHS’s breach tool yet. CentraState’s substitute notice can be found on their website. Original post: Ken Serrano reports: A cybersecurity problem at CentraState Medical Center has prompted the hospital to divert ambulances and most new patients to other…
Author: Dissent
Breaking: LockBit 3.0 gives Sick Kids free decryptor, claims to ban partner who attacked them
#LockBit has formally apologized for the attack on the Hospital for Sick Kids in Canada that took place on December 18. The hospital is still trying to recover from it. “We formally apologize for the attack on sikkids.ca and give back the decryptor for free, the partner who attacked this hospital violated our rules, is…
Ex-Employee Arrested For Extortion, Cyberstalking
The Johnstown County Report reports: A former employee at a Selma animal hospital has been charged with extortion and cyberstalking. Eduardo Figueroa, age 40, of S. Sussex Drive, Smithfield was arrested December 14 at his residence by Smithfield Police. Stolen medical records from the animal hospital were also recovered at his home, police said. On…
Oregon AG Rosenblum Settles with Avalon Healthcare over 2019 Data Breach
Although HHS OCR generally fails to take a hard enforcement line with reporting breaches by the “no later than 60 day” rule in HIPAA, state attorneys general may enforce even stricter deadlines. Read this press release: December 27 — Oregon Attorney General Ellen Rosenblum and Utah Attorney General Sean Reyes announced they’ve settled a data breach enforcement case…
A hospital’s patient data was stolen in June and they should have known it. Why are they claiming they didn’t know?
Six months after DataBreaches reported that Fitzgibbon Hospital in Missouri had been the victim of a ransomware attack by Daixin Team, the hospital has finally disclosed the incident. In a notification, the hospital claims that they detected the unauthorized access on June 6. But then they immediately make a demonstrably false statement. They state, “Though…
Retreat Behavioral Health addiction treatment centers hit by ransomware earlier this year
Retreat Behavioral Health (RBH) has addiction treatment facilities in Florida, Pennsylvania, and Connecticut. On July 1, 2022, they reportedly detected a ransomware attack. Letters were sent out this week, but because Massachusetts actually prohibits entities from providing important details in notifications to consumers, there’s a lot we don’t know about this incident yet. Specifically, the…