On November 11, 2024, Humboldt Independent Practice Association (Humboldt IPA) submitted a breach report to HHS that used a placeholder of 500 for the number of patients affected. All we knew from HHS’s entry was that it was some kind of hacking or IT incident involving protected health information located in email. The California entity’s…
Category: Health Data
Summerside hospital worker fired for improperly accessing patient files, says Health P.E.I.
Stephen Brun reports: An employee of Summerside’s Prince County Hospital accessed the personal files of more than 100 patients without permission, Health P.E.I. says. In a news release Monday afternoon, the health agency said it discovered the breach of the provincial electronic record system last fall and has sent letters to the affected patients. It…
Cyberattack on NHS causes hospitals to miss cancer care targets
Connor Jones reports: NHS execs admit that last year’s cyberattack on hospitals in Wirral, northwest England, continues to “significantly” impact waiting times for cancer treatments, and suspect this will last for “months.” During the attack, which began on November 25 2024, the main clinical system was pulled offline and by December 5 the teams were…
DISA Incident: Update on Review of ‘Potentially Affected Files’ and Notification Plan
BakerHostetler writes: On Thursday, Jan. 23, DISA Global Solutions, Inc. (DISA) provided an update to customers regarding its April 2024 cyber incident, including the results of its data review and notification plans. According to DISA, its investigation determined an unauthorized third party accessed its environment between Feb. 9, 2024, and April 22, 2024, and “procured…
Delta County Memorial Hospital District reveals more about 2024 cyberattack that affected 148,363 people
Delta County Memorial Hospital District (Delta Health) in Colorado was the victim of a cyberattack at the end of May 2024. Whatever happened — and the details still haven’t been disclosed — resulted in the provider notifying HHS on July 29 that it had suffered a breach, but the number was not yet known. The…
Cover-up Follow-up: Westend Dental starts notifying patients of October 2020 ransomware attack
In December, DataBreaches reported that the Indiana Attorney General’s Office had brought charges against Westend Dental for a number of HIPAA violations. The state had started investigating the dental practice after a patient complained about them not providing a copy of their records in response to a request. In looking into that complaint, the state…