The Brussels Times reports: Various computers, including one containing data on vaccinated persons, were stolen on the night of Monday to Tuesday from the Pacheco vaccination centre in Brussels, the Commission communautaire commune (Cocom -Joint Community Commission) said in a press release on Friday. “Cocom quickly took measures, in collaboration with the police, its information…
Category: Health Data
Duneland School Corporation notifying employees and dependents of data breach
“Duneland School Corporation” sounds like it should be an education-related business but it’s actually a school district in Indiana. On October 27, they discovered that they had experienced a security incident that sounds like a ransomware attack. In a statement on their website, they note: Through our investigation, we determined that an unauthorized person obtained…
De: Counterfeiters want to hijack the pharmacists’ DAV portal
(Google translation:) Why falsify vaccination cards when you can issue certificates yourself? Shortly before Christmas, pharmacies are apparently the target of a phishing attack: Fraudsters send an email to the owners asking them to log into the DAV portal and confirm the new terms and conditions. The aim is apparently to formulate the login data. Pharmacist Dr. Thomas…
Health Ministry of Brazil Hit by Two Ransomware Attacks in One Week; Vaccination Data Stolen & Taken Offline
Scott Ikeda reports: While it is far from uncommon for an organization to announce that it has been hit by a ransomware attack, two in one week is an unusual event. Brazil’s Health Ministry is looking at extended downtime for the system that processes Covid-19 vaccination data as it attempts to recover from this exact…
The Medical Review Institute of America notifies patients of ransomware incident (updated)
The Medical Review Institute of America (“MRIoA”) collects protected health information (PHI) as part of providing clinical peer review for covered entities that request it (if the patient consents to provide info for the review). MRIoA was hit with ransomware in November. And although they do not directly state that they paid ransom, it sounds…
If Your Disclosure of a Data Breach Was “Late,” You May Have to Litigate
Jean E. Tomasco of Robinson & Cole writes about a breach involving an accounting firm that is a business associate to a number of covered entities. This month, the firm, Bansley & Kierner, issued a notice and started notifying individuals and HHS. But the time frame for discovery and notification has resulted in a potential…