Updated April 24, 2025: The InterLock ransomware gang has claimed responsibility for this attack. They claim to have exfiltrated 1,510 GB of data, 683,104 files, and 75,836 folders, and have leaked the file tree and some folder information. Reuters reports: DaVita said on Monday it had become aware of a ransomware incident that has encrypted…
Category: Health Data
Psychiatric documents with sensitive patient info found ‘loosely blown about’ near Regina medical clinic
Brandon Harder reports: The private records of patients at the Elphinstone Medical Clinic were just laying loose on the ground in a nearby alley and an empty lot. According to a report from Saskatchewan’s Information and Privacy Commissioner (SIPC), a person referred to as “Individual A” saw a Facebook post on Oct. 27, 2024 that referenced patient…
UnitedHealth is demanding some struggling doctors immediately repay loans issued after last year’s cyberattack
Ashley Capoot reports: Following the massive cyberattack on UnitedHealth Group’s Change Healthcare unit last year, the company launched a temporary funding assistance program to help medical practices with their short-term cash flow needs, offering no-interest loans with no added fees. A little over a year later, UnitedHealth is aggressively going after borrowers, demanding they “immediately repay” their outstanding balances,…
Patient data leaked from cyberattack on Brunswick Medical Center
Leora Schertzer reports: A cyberattack on the Brunswick Medical Center has compromised personal information of patients and staff, the Pointe-Claire clinic announced on Friday. The attack targeted its IT system on March 24, the announcement said. “Despite our continued efforts, some patient health information as well as personal information about our employees and professionals was…
No need to hack when it’s leaking: SavantCare edition
Today’s concerning leak is brought to you by SavantCare. The leak was discovered by an independent researcher who first reported it on his blog yesterday. In his report, @JayeLTee states that he found exposed data that included data from SavantCare employee chats. “Over two-thirds of the 308 users on the chat were for SavantCare, a…
HHS Office for Civil Rights Settles HIPAA Security Rule Investigation; Northeast Radiology agrees to corrective action plan and $350,000 monetary penalty
Over the past few years, DataBreaches has reported on a breach involving Northeast Radiology and its business associate, Alliance Healthcare Services. In March 2020, Northeast Radiology revealed its patient data was involved in a breach Alliance notified them about in January, 2020. TechCrunch had contacted Northeast Radiology about its unpatched PACS servers in 2019, but…