Claims of “negligence” are often raised in lawsuits. DataBreaches is not a lawyer, of course, but wonders whether by now, we should consider a plastic surgeon “negligent” in their data security if they store nude photos of their patients with patient names and identity information in plain text and no strong encryption or suitable alternative…
Category: Health Data
India: Servers of two city hospitals hacked; police register FIR
The Times of India reports: New Delhi: Delhi Police has registered an FIR after the servers of two hospitals in north Delhi, Sant Parmanand Hospital in Civil Lines and NKS Super Speciality Hospital in Gulabi Bagh, were allegedly hacked. Patient data, financial records and administrative files were accessed during the breach, which took place…
Ph: Coop Hospital confirms probe into reported cyberattack
Palawan News reports: The Palawan Medical Mission Group Multipurpose Cooperative (PMMGPMC), operator of the Coop Hospital in Puerto Princesa City, confirmed Thursday night that it is investigating a reported ransomware attack allegedly carried out by the cybercriminal group Qilin. The confirmation came in a public advisory following claims that Qilin, a ransomware-as-a-service (RaaS) operation that…
Evoke Wellness to Pay $1.9 Million to Settle FTC Claims That They Misled Consumers Seeking Substance Use Disorder Treatment
Evoke allegedly used Google ads and telemarketing to pretend to be other clinics; court order permanently bans them from similar deceptive conduct On June 10, DataBreaches sent Evoke Wellness in Hilliard, Ohio an inquiry about an insider-wrongdoing breach reported in Ohio media but not mentioned on their website. There has been no reply as of…
Former Hilliard treatment center employee accused of selling patient data on dark web
In case you were looking for yet another reminder of the insider threat in the healthcare sector, here’s a report from WBNS in Ohio: Authorities in Hilliard are investigating a widespread fraud and identity theft case involving a former employee of a local addiction treatment center who allegedly sold patients’ private data on the dark…
Data breach of patient info ends in firing of Miami hospital employee
Michelle Marchante provides today’s reminder of the insider threat: More than 2,000 patients at Jackson Health System had their personal data, including names, address and medical information, accessed in a lengthy breach that spanned nearly five years. The data breach was conducted by a Jackson employee who accessed the information to promote a personal healthcare…