Two large leaks involving personal information discovered by researchers. First up, Zack Whittaker reports: WeWork India has fixed a security lapse that exposed the personal information and selfies of tens of thousands of people who visited WeWork India’s coworking spaces. Security researcher Sandeep Hodkasia found visitor data spilling from the check-in app on WeWork India’s website, used…
Category: Health Data
Jp: Information of 111,191 patients and 715 employees at Kokikai Yasue Hospital leaked
Tatsuki Matsuura reports on what sounds like it might be a ransomware attack. Here’s a machine translation of how the report begins: Kokikai Yasue Hospital (Gifu City, Gifu Prefecture) announced on July 4 that the personal information of patients and new Corona vaccine vaccinated patients may have been leaked up to 111,991 due to unauthorized…
ATC Healthcare, Community of Hope, The People Concern disclose breaches, Advocates notifies more people of its breach
Preface: In this post, DataBreaches summarizes four more notifications involving patient data or health data that were published this past week. Three of the incidents are new disclosures and one is an update. Note that the three newly disclosed incidents all involved compromise of employee email accounts. In at least two of the three incidents,…
Professional Finance Company, Inc. is providing breach notifications to patients of 657 covered entities
So this one could be another big one: Professional Finance Company, Inc. (“PFC”), an accounts receivable management company that provides assistance to various organizations (including healthcare providers), announced today that it is notifying individuals whose information may have been involved in a recent network security incident. On February 26, 2022, PFC detected and stopped a sophisticated…
Alameda Health System’s second breach went undetected by investigators of first breach?
On June 24, Alameda Health System in California submitted a notification to the California Attorney General’s Office. The notification concerned a breach of an employee’s email account breach that began on April 30, 2020. The breach wasn’t discovered until February 23, 2022, and the account was locked down after that in March. According to Alameda’s…
Updating: Breach reports from Eye Care Leaders’ clients continue to add up
As June drew to a close, DataBreaches’ little notepad tabulations indicate that we already have reports from 32 entities impacted by the Eye Care Leaders breach last December. Readers may recall that ECL’s myCare Integrity platform was reportedly accessed by an unauthorized individual who deleted some of the databases before being detected. As far as…