On June 9, DataBreaches reported that Goodman Campbell Brain & Spine in Indiana had apparently become a ransomware victim of Hive threat actors on or about May 20. The threat actors added the medical practice to their dedicated leak site on June 8 and leaked a “proofpack” that contained passwords for accounts as well as…
Category: Health Data
UK: Former health adviser found guilty of illegally accessing patient records
The Information Commissioner’s Office announced: A former health adviser has been found guilty of accessing medical records of patients without a valid legal reason. Christopher O’Brien, 36, was working at the South Warwickshire NHS Foundation Trust when he unlawfully accessed the records of 14 patients, who were known personally to him, between June and December 2019….
Dental Care Alliance settles lawsuit stemming from 2020 breach
In December 2020, DataBreaches reported on a hacking incident involving Dental Care Alliance, a business associate to hundreds of dental practices. Commenting on the incident, DataBreaches wrote: With all that sensitive information involved, you might think that the practice would offer remediation services to the 1,004,304 people affected but they do not seem to have…
First Choice Community Healthcare discloses breach but doesn’t reveal it was a ransomware attack
First Choice Community Healthcare (FCCH) is a non-profit healthcare system in New Mexico providing a range of services to the community. In a press release issued today, they describe a security incident that they discovered on March 27, 2022. The notice is also posted on their website. Their notice talks about how the incident “may…
Infinity Rehab and Avamere Health Services notify 380,984 patients about breach at Avamere (with updates)
In April 2022, DataBreaches became aware of a possible breach involving Avamere Holdings, a group of companies providing senior living healthcare and rehabilitation services including IT services. Today, we learned that they did have a breach of their network. Premere Rehab, LLC (“Infinity Rehab”) reported that Avamere Health Services had alerted them that they had…
Mailing and printing vendor issues breach notice on behalf of more than three dozen health plans
Update: On July 27, OneTouchPoint notified the Maine Attorney General’s Office that a total of 1,073,316 people were impacted by their breach. In June, Arkansas Blue Cross and Blue Shield disclosed a breach involving their business associate, Matrix. Matrix had been notified by OneTouchPoint of a cyberattack that occurred between April 27 and April 28….