Four months after law enforcement took down AlphV’s leak site and disrupted their operations, AlphV has not recovered. The damage from law enforcement in December was one factor. Then, in March, a self-described affiliate claimed that AlphV had gotten a $22 million payment from Change Healthcare OPTUM but had taken the money, suspended the affiliate’s…
Category: Health Data
Update: American Renal Associates Data Breach Exposes Over 37,700 Individuals: Medusa Exfiltrates 5TB+ Data
SuspectFile reports: The American Renal Associates (ARA) provides care to patients suffering from end-stage renal disease (ESRD) and is one of the largest dialysis service providers in the United States. In a previous article, we reported on the theft of PHI and PII data from the servers of American Renal Associates by the Medusa ransomware group, which…
Contract Class Certified in CareFirst Data Breach Lawsuit 9 Years After Legal Action was Initiated
Steve Alder reports: A lawsuit against CareFirst BlueCross BlueShield that was filed in response to a 2014 data breach has had a contract class certified by a federal judge, 9 years after legal action was initiated. The lawsuit can now proceed and more than 1 million plan members are a step closer to obtaining damages. In…
Ca: Hacked hospitals sending 326K letters to patients in Windsor, elsewhere
Taylor Campbell reports: Hundreds of thousands of patients, including many in Windsor-Essex, whose personal information was posted to the dark web following a cyberattack last fall will soon receive letters from impacted hospitals. “One patient is clearly too many,” said Windsor Regional Hospital CEO David Musyj. He called criminal cyberattacks “disgusting acts, particularly when aimed…
Au: Diabetes WA reveals data breach
Richard Chirgwin reports: Diabetes WA has disclosed a data breach affecting people who engaged with its telehealth service. In a breach notice posted Tuesday, the organisation said a “third party” gained “access to the personal information of some … contacts.” The personal information possibly exposed in the breach includes name, address, date of birth, email, phone number,…
City of Hope updates a breach disclosure, reports 827,149 patients affected in ransomware attack last year
City of Hope updated its breach disclosure. DataBreaches can now reveal some previously undisclosed details about the 2023 incident. In December 2023, City of Hope, a cancer treatment center in Duarte, California, notified HHS that it had experienced a breach. Its report indicated that “501” patients had been affected, but this was just a marker…