Premier Health Partners (“PHP”) in Ohio issued a press release this week and uploaded a substitute notice to its website. Why they first concluded an investigation into a breach they discovered on July 12, 2023 requires more explanation than they provide. Premier Health Partners (“Premier Health”) is providing notice of a cyber incident that may…
Category: Health Data
Theft from Glasgow’s Queen Elizabeth University Hospital sparks probe
Old-fashioned breaches still exist. Amanda Keenan reports: Health board chiefs have launched a major investigation after brazen thieves stole NHS laptops containing confidential patient data. Around 20 staff devices were snatched from an office block within the Queen Elizabeth University Hospital in Govan. Greater Glasgow and Clyde health board bosses have been forced to fork out £14,000 to…
North Country Healthcare responds to Stormous’s claims of a breach
On July 13, DataBreaches reported that the Stormous gang claimed to have exfiltrated 600,000 patients’ records from North Country Healthcare (NCH) in Arizona. At the time they provided a small sample of records in .csv format and indicated that they were going to leak 100,000 records for free and sell the other 500,000 records. Because…
Texas Enacts Electronic Health Record Data Localization Law
Hunton Andrews Kurth writes: Texas Governor Greg Abbott recently signed into law S.B. 1188, a bill that regulates the security and storage of electronic health record data and the deployment of artificial intelligence (“AI”) in the health care context. The law creates a data localization requirement, obligating covered entities to physically maintain electronic health records in…
70% of healthcare cyberattacks result in delayed patient care, report finds
Chad Van Alstin reports: Last year, 92% of all healthcare organizations—systems, hospitals, and provider groups—were targeted by a cyberattack, according to a new report from vendor Fortified Health Security. Further, 70% of those that reported experiencing an incident said patient care was impacted in some form, signaling that even an unsuccessful data breach can result in…
Multiple lawsuits filed against Doyon Ltd over April 2024 data breach and late notification
KUAC reports: Multiple class action lawsuits recently filed in federal court claim an Interior Alaska Native Corporation failed to take reasonable steps to protect personal data from a cyberattack last year. Court filings show at least four different plaintiffs have lodged a complaint against Doyon, Ltd., in Alaska District Court since mid-June, on behalf of…