We know that there is an increase in scamming trying to capitalize on the COVID-19 pandemic. The FBI has issued an alert, the DOJ has taken enforcement action against one company already, and the FDA and FTC have warned companies. Here’s one scam specifically targeting military members who have Tricare health insurance. Howard Altman reports:…
Category: Health Data
An old HIPAA incident rears its very ugly head again
Like other journalists who cover data breaches in the healthcare space, I routinely check HHS’s public breach disclosure tool (sometimes called “The Wall of Shame”) to see what breaches have been reported to them and with what numbers. One of the recent entries was from a “Stephan C. Dean” who listed himself as a business…
UK medical firm poised for work on coronavirus had been hit by Maze ransomware
Bill Goodwin has an important update on the Maze ransomware group’s attack on a London entity that does clinical pharmacology testing. I had blogged about the attack on this entity after Maze went back on their public pledge to stop all activity against the medical sector. Although Maze had attacked the facility before their pledge,…
University of Utah Health notifies patients of phishing attacks that began in January
The University of Utah Health is notifying patients whose protected health information was in some employees’ email accounts after they fell for a phishing attack. The following is a notice posted on their website March 20th: We are committed to protecting the confidentiality of our patients’ information. Regrettably, this notice is regarding an incident involving…
Liar, Liar, Pants on Fire? Did Maze Team go back on its word to leave medically related facilities alone?
We also stop all activity versus all kinds of medical organizations until the stabilization of the situation with virus. — Maze Team, March 18, 2020. Three days after issuing a press release claiming that they would stop all activity against all kinds of medical organizations, Maze Team appears to have gone back on its word….
Oregon DHS notifies public of data breach
KTVZ reports: The Oregon Department of Human Services announced Friday that it uncovered a “phishing” incident on March 6 that affected one staff member’s e-mail. […] The security and confidentiality of private health information is critical to the Department of Human Services. While the department cannot confirm that any clients’ personal information was acquired from…