Joseph Cox reports: Front Rush, a technology company that provides services to college athletics programs, exposed a server containing more than 700,000 files to the open internet, including college athletes’ medical records, performance reports, driver licenses, and other personal information. Front Rush works with over 30,000 coaches and 9,500 teams according to its website. The company…
Category: Health Data
btyDental notifies patients after ransomware attack
bty Dental in Anchorage, Alaska suffered a ransomware attack that they discovered on November 17. The ransomware impacted some of their servers, including the possibility that patients’ names and x-ray images might have been accessed. But the good news is what couldn’t have been accessed. As the practice explains in their notice: After examining the…
CA: Enloe targeted by ransomware attack and elective procedures delayed
I missed this one when it was first published. Ashley Gardner reported on January 3: Enloe Medical Center was targeted by a ransomware attack on Tuesday that caused the hospital to reschedule some elective procedures. According to hospital officials, data stored on the hospital’s network was encrypted, preventing staff from accessing the information. Read more…
Native American Rehabilitation Association of the Northwest reports Emotet attack
On January 3, the Native American Rehabilitation Association of the Northwest, Inc. (NARA NW) in Portland, Oregon announced that it experienced a cybersecurity incident November 4-5, 2019. The attack was described as a malware incident with Emotet malware injected when some employees fell for a phishing attack on November 4. The incident was recognized quickly…
Chinese tech companies still can’t stop medical data leaks
Eliza Gkritsi follows up on something previously reported on this site based on research by WizCase that they had shared with this site. WizCase subsequently updated their own post, here. Two security flaws at Chinese medical device operators put over 24 million patient records at risk in October. These medical data leaks reveal how cybersecurity practices…
Mercy Health Lorain Hospital Laboratory patients notified of HIPAA breach due to contractor invoice printing error
Although no actual or attempted access or misuse of patient or guarantor information has been discovered, RCM Enterprise Services, Inc. (“RCM”) is providing notice to certain individuals regarding an error in the invoice mailing process that caused individually identifiable information to appear in the clear address “window” on medical invoices. RCM provides patient billing services…