If you know to scroll down on BHG Behavioral Health Group‘s website to their footer, you will see a small link to an undated data security incident notice. That undated notice does not reveal when Behavioral Health Group first discovered the data security incident or how they first discovered it. The notice does state, however,…
Category: Health Data
New GwisinLocker ransomware encrypts Windows and Linux ESXi servers
This site generally doesn’t cover or announce new types of ransomware, but this one targets the healthcare sector, so…. Bill Toulas reports: A new ransomware family called ‘GwisinLocker’ targets South Korean healthcare, industrial, and pharmaceutical companies with Windows and Linux encryptors, including support for encrypting VMware ESXi servers and virtual machines. The new malware is…
NJ: SERV Behavioral Health System remains quiet about alleged ransomware attack in May
SERV Behavioral Health System in New Jersey provides Social, Educational, Residential, and Vocational services to children and adults with adults and children trying to cope with serious mental illness or a developmental disability. On May 26, their files were allegedly encrypted by Hive ransomware team. On July 14, Hive added SERV BHS to their leak…
Ransomware team hits Disability Help Group
One of the recent listings on a well-known ransomware leak site names a Florida law firm as their victim but they link to disabilityhelpgroup.com. That site, which offers what they describe as advocacy services for individuals seeking help in securing Social Security disability benefits or veterans’ disability benefits, does not display the law firm’s name…
Roundup: Four more breaches in the healthcare sector: Healthback Holdings, Zenith American Solutions, Bronx Accountable Healthcare Network, and Centerstone
On June 1, Healthback Holdings, LLC in Oklahoma discovered that they had been subject to a hacking incident that began in October 2021. “A limited number” of employee accounts were compromised. On July 29, Healthback notified HHS that 21,114 patients were affected. Their notice says that names, health insurance information, Social Security numbers, and clinical…
‘They completely ignored us’: More doctors claim stonewalling by Eye Care Leaders during breach
Jessica Davis reports: Unresponsive. Completely ignored. Misleading. Breached contracts. In a highly regulated industry like healthcare, these are not words one would expect to hear about a vendor tasked with hosting the electronic medical records of small providers and their related patient data. But in the wake of the coverage detailing a number of cited…