Sarah Vesty reports: A Scots cancer patient had hit out after discovering his confidential medical records were ‘inappropriately’ accessed by a member of NHS Lothian staff amid a major data breach. Martin Laing received a letter from the health board last week informing him of the incident, which is understood to have affected around 90 people. The 57-year-old, who…
Category: Health Data
Annual Report to Congress on Breaches of Unsecured Protected Health Information For Calendar Year 2021- HHS OCR
From their report: Summary OCR received 609 notifications of breaches affecting 500 or more individuals, representing a decrease of 7% from the number of reports received in calendar year 2020. These reported breaches affected a total of approximately 37,182,558 individuals. The most commonly reported category of breaches was hacking, and the largest breach of this…
BD issues cybersecurity alert for hacking risk found in Alaris infusion pump software
Andrea Park reports: A vulnerability found in software used to monitor some of BD’s infusion pumps could potentially give hackers access to personal data stored in the system. BD posted a cybersecurity bulletin about the issue Thursday and said it has already notified the FDA and the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency…
$150 million: the cost of a cyberattack?
The cyberattack reported by CommonSpirit last year has reportedly cost the firm $150 million already. From their unaudited quarterly report: The Cyber security Incident has had an estimated adverse financial impact of approximately $150 million to date, which includes lost revenues from the associated business interruption, the costs incurred to remediate the issues and other…
MKS Instruments’ breach notification includes a surprising statement to reassure those affected
Well, this is a bit different. On February 13, MKS Instruments in Massachusetts (the U.S. parent company of the MKS and Atotech group of companies) became aware of a ransomware event. By February 16, they issued a notification letter to former and current employees who may have been affected. Their notification informed employees that, “While…
Acting Pennsylvania Attorney General Henry Secures $400,000 Settlement with DNA Diagnostics Center Stemming from Data Breach
HARRISBURG – Acting Attorney General Michelle A. Henry today announced a settlement with DNA Diagnostics Center – one of the world’s largest private DNA-testing companies offering diagnostic and genetic testing to help answer relationship, fertility, and health questions – after a data breach exposed the social security numbers of 12,663 Pennsylvanians who were subject to genetic testing…