The Information Commissioner’s Office (ICO) has today announced it has reprimanded South Tees Hospitals NHS Foundation Trust for a data breach which resulted in a disclosure containing sensitive information to a unauthorised family member. In November 2022, a Trust employee sent a standard letter to inform the father of a patient of an upcoming appointment,…
Category: Health Data
Au: St Vincent’s Health says there is ‘no evidence’ sensitive personal information was stolen by hackers in cyber attack
Bryant Hevesi reports: St Vincent’s Health has declared that no evidence has been uncovered that sensitive personal information was stolen by hackers last month. The healthcare provider, which operates 10 hospitals and 26 aged-care facilities across New South Wales, Queensland and Victoria, was left scrambling to identify what data had been accessed from its network…
COVID Test Data Breach: 1.3 Million Patient Records Exposed Online
Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password protected database that contained nearly 1.3 million records, which included COVID-19 testing information and personally identifiable information such as the patient’s name, date of birth, and passport number. Jeremiah Fowler writes: The publicly exposed database contained an estimated 1.3 million records that included 118,441…
Primary Health & Wellness Center, LLC’s public notice of ransomware incident
In the process of researching breach reports submitted to HHS, DataBreaches came across a public notice for an incident affecting Primary Health & Wellness Center, LLC in Maryland. The covered entity is to be commended for the details and transparency in their notice, although they do not name the threat actor/group involved or any details…
Tilbury District Family Health Team confirms patient data impacted by October ransomware attack
CKXS reports: The fallout continues following last year’s ransomware attack that resulted in a massive data breach at five southwestern Ontario hospitals. The Tilbury District Family Health Team (TDFHT) has confirmed that its patient health information was impacted by the cyberattack on October 23, 2023, which also resulted in varying amounts of patient and staff…
Patient data hacked at Canberra medical centre
Steve Evans, and Lanie Tindale report: Hackers have broken into the medical records at Crace Medical Centre. An announcement to patients said: “unfortunately, our investigations have identified that patient data was accessed and taken from our systems by an unauthorised third party”. The hack happened on December 12 but patients were only texted early afternoon…