John Koziol reports: For the second time this year, a North Country nonprofit organization based in the city has been hit by a ransomware attack. Hackers struck the Androscoggin Valley Regional Refuse Disposal District this spring, with the district paying an undisclosed amount to get its computer files back, while on Monday hackers targeted Coos…
Category: Health Data
Police investigating City of Helsinki data breach involving over 140 victims
The Helsinki Times reports: Helsinki police have begun a preliminary investigation into the actions of an employee of the City of Helsinki, who violated data privacy regulations by accessing the personal information of several individuals in the healthcare system without permission. In July, the City revealed that the employee, who worked in the social services and…
Illinois discloses breach involving access control to Illinois Integrated Eligibility System
KHQA reports that ten months after a data breach involving the Illinois Integrated Eligibility System (IES), the state is now disclosing the incident. But as I read the notice below, it seems like it was first discovered 10 months ago. When did this breach actually begin? From the state’s notice, republished on KHQA: Pursuant to…
Ransomware Resources for HIPAA Regulated Entities
The HHS Office for Civil Rights (OCR) is sharing the following information to ensure that HIPAA regulated entities are aware of the resources available to assist in preventing, detecting, and mitigating breaches of unsecured protected health information caused by hacking and ransomware. HHS Health Sector Cybersecurity Coordination Center Threat Briefs: https://www.hhs.gov/about/agencies/asa/ocio/hc3/products/index.html#sector-alerts January 28, 2021 –…
PA: Horizon House notifying patients of ransomware attack in March
I do not recall ever seeing Horizon House in Philadelphia listed on any dedicated leak site used by ransomware groups, but according to a press release issued last week, Horizon House experienced a ransomware attack in March 2 and March 5 of this year that encrypted their files and allowed the unknown threat actor to…
MN: Mankato Clinic notifies patients of health data breach
Mitch Keegan reports: The Mankato Clinic has notified more than 500 patients of a breach of unsecured protected health information. In a news release, Mankato Clinic says on August 3rd an electronic spreadsheet containing patient information for 535 patients was mistakenly e-mailed to a colleague of a Mankato Clinic employee to an external e-mail account. The e-mail…