DataBreaches has previously reported some of the developing news concerning a cyberattack on Cencora/Lash Group. Our coverage focused on affected U.S. entities, but Canadian and UK entities were also affected. Wire News Fax reports: Medical and personal patient data from Innomar Strategies – a major Canadian pharmaceutical company – was stolen following an intrusion into…
Category: Health Data
Ascension Cybersecurity Event Update
Posted June 12 on Ascension’s website: “We have made progress in our investigation and recovery with the help of third-party cybersecurity experts. At this point, we now have evidence that indicates that the attackers were able to take files from a small number of file servers used by our associates primarily for daily and routine…
Special Health Resources’ “technical difficulties” are due to a ransomware attack
Although some threat groups or affiliates have sworn off attacking the medical sector with ransomware, not all have. On Sunday evening, June 2, Special Health Resources (“SHR”) posted a notice on their Facebook account: We are currently experiencing technical difficulties and on Monday, our health centers will only see patients who are actively sick. All…
Federal criminal investigation involving Perry Johnson & Associates data breach
The Perry Johnson & Associates (PJ&A) data breach was the biggest reported breach involving protected health information in 2023, with more than 13 million patients affected1. Now WBEZ in Chicago reports that there is a federal criminal investigation related to the breach at the medical transcription service. Federal authorities are conducting a criminal investigation into…
70,000 Adventist Health Tulare patients being notified of HIPAA breach by payment collections associate
Adventist Health Tulare has issued a press release about a breach at a business associate in Nebraska. The June 7 press release states, “A data security incident was recently discovered by Signature Performance, an agency working on behalf of Adventist Health Tulare to collect payment for services.” Their investigation determined that an unknown party accessed…
PruittHealth was hacked back in November. Here’s what we STILL don’t know.
What happens when threat actors leak data on the dark web but the victim entity doesn’t access it in time to figure out what was leaked? That’s what happened to PruittHealth in Georgia last year. How many people are they notifying because they can’t figure out what was accessed, acquired, or leaked? In November 2023,…