Amanda Martinez reports: A dentist office in Maitland is the latest victim of a ransomware attack in Seminole County. Dr. Carl Bilancione said all of his Quickbooks accounting files were encrypted and a pop-up screen instructed him to pay $10,000. Every 48 hours, the ransom would double, according to the message. “What the IT people ascertained is…
Category: Health Data
Health IT companies impacted by browser extension data leak: report
Heather Landi reports: Browser extensions, also known as add-ons or plug-ins, are commonly used by desktop Web surfers to do things ranging from blocking ads to remembering passwords to checking grammar. According to an independent security researcher, some extensions have been leaking and exposing browsing activity data, including patient names and health information from healthcare…
Eight Many more covered entities reveal they were impacted by AMCA breach
In the past few days, eight even more entities have revealed that their patients were impacted by the American Medical Collection Agency (Retrieval Masters) data breach that results in AMCA filing for Chapter 11 bankruptcy protection. You can find the names of the newest entities and the numbers affected in this post. Prior to this…
South Texas Dermatopathology and Laboratory of Dermatopathology ADX Notify Their Patients of AMCA Breach (Update4)
Update 1: And now add Seacoast Pathology, (9,300 affected) to the 20,000 described in the original post below, and the approximately 21 million disclosed last month. Update 2 (July 21): And now add American Esoteric Laboratories (541,900), CBLPath, Inc. (148,900), and Natera (unspecified number) to the list and tally. Update 3 (July 22): And now…
Victims of AMCA’s breach allege AMCA not helpful enough in incident response
The other day, I wondered aloud whether there was anything the American Medical Collection Agency (Retrieval Masters) could have done after they were hacked to keep their big clients like Quest Diagnostics and LabCorp. An interesting report by Marianne Kolbasuk McGee on BankInfoSecurity suggests that there might have been. McGee reports that newly submitted court…
OH: Edgepark Medical Supplies notifying 6,572 patients after a “password spray attack”
It appears that RGH Enterprises, Inc., d/b/a Edgepark Medical Supplies, has had another HIPAA breach. The first time they came to this site’s attention was in January, 2014, when they disclosed a 2013 malware incident that had gone undetected for nine months and potentially impacted 4,230 patients. Then in January, 2018, they notified HHS and…