Daniela Ginzburg reports: The hacker group that has claimed responsibility for the breach at the Mayanei HaYeshua Medical Center in central Israel earlier this month has issued an ultimatum to the facility, threatening to reveal sensitive medical files that include the prime minister, MKs, senior rabbis, and other known figures in the Haredi word if…
Category: Health Data
134K Massachusetts residents impacted by ‘global security incident’
Stacey Scott reports: Massachusetts health officials are warning over 134,000 individuals who are currently or were previously enrolled in certain state programs that their personal information has been involved in a recent third-party data security breach. The breach is part of a worldwide incident that involves a file-transfer software program called “MOVEit.” UMass Chan Medical…
Hackers may have stolen SSNs, other info from Coastal Orthopedics
The Bradenton Herald reports: Sensitive information — including Social Security numbers, birthdays and addresses — for current and former patients at Coastal Orthopedics may have been compromised after an attacker hacked into the company’s system. The company detected suspicious activity on its network around June 11, prompting an investigation, according to a press release. Although…
United Bank Notifies Individuals of MOVEit Breach Involving Camden-Clark Physician Corporation and Camden-Clark Memorial Hospital Corporation
United Bank, a financial services institution which provides banking services to Camden-Clark Physician Corporation, a physicians’ group practice located in Parkersburg, W.V. and Camden-Clark Memorial Hospital Corporation (collectively “Camden-Clark”), suffered a data security incident. This data security incident involved the compromise of a software product called MOVEit that is used by thousands of organizations around…
Colorado Department of Health Care Policy & Financing reports more than 4 million affected by MOVEit breach
As I tooted earlier this morning on Infosec.Exchange: One of the MOVEit victims was the Colorado Department of Health Care Policy & Financing, which was notified by IBM of the data breach. According to their notification, the information types included full name, Social Security number, Medicaid ID number, Medicare ID number, date of birth, home…
One year later, Tift Regional Medical Center notifies patients of Hive attack
In September 2022, DataBreaches broke the story of how Hive had attacked Tift Regional Medical Center in Georgia between July and August. The attack did not involve encryption of systems but Hive claimed to have exfiltrated about 1 TB of data, including files with protected health information. On October 14, Tift notified HHS of an…