A data breach involving a medical collection agency affected more than 200,000 patients who had used the firm’s online payment portal between September, 2018 and the beginning of March, 2019. At the end of February, Gemini Advisory analysts identified a Card Not Present (CNP) database that had been posted for sale in a dark web…
Category: Health Data
Member of Sophisticated China-Based Hacking Group Indicted for Series of Computer Intrusions, Including 2015 Data Breach of Health Insurer Anthem Inc. Affecting Over 78 Million People
More than four years from hack to indictment. How many more until they actually have the alleged hackers in custody? From the U.S. Department of Justice, this press release today: A federal grand jury returned an indictment unsealed today in Indianapolis, Indiana, charging a Chinese national as part of an extremely sophisticated hacking group operating…
Lest we forget physical security, too
It’s easy to lose interest in low-tech data theft or compromise when we have topics like ransomware and extortion to consider. But physical security of paper records is still something that cannot be taken too casually, as this notice from Bloodworks Northwest reminds us. Was the document stolen or did it just get thrown out…
Spectrum Health Lakeland notifies patients after billing vendor breach
I’m not finding anything on their web site just yet, but Spectrum Health Lakeland has reportedly been notifying patients about a breach involving their billing provider, OS Inc. WSJM reports that the health system learned of the breach on March 8 after an OS employee’s email account containing patient information was accessed without authorization. The information…
MN: American Baptist Homes of the Midwest notifies patients and residents of ransomware incident
May 6, 2019 Re: Notification of Security Incident Dear Sir or Madam, We are writing to let you know about an information security incident that could potentially affect the confidentiality of your personal information. Please be assured we have taken every step necessary to address this incident and we are committed to fully protecting all…
American Indian Health & Services, Inc. Provides Notice Of Data Security Event
SANTA BARBARA, Calif., May 6, 2019 /PRNewswire/ — American Indian Health & Services, Inc. (“AIHS”) is providing notice to individuals of a recent incident involving personal information. To date, AIHS has not received any reports that personal information has been misused as a result of this incident. What Happened? On March 7, 2019, AIHS discovered a…