Ayushman Kuman reports: A day after a Telegram bot provided access to the personal information of individuals who had reportedly registered for vaccination through the government’s CoWIN portal, an independent analysis by CloudSEK has shown that the threat actors do not have access to the entire portal or the backend database. CloudSEK is a Singapore-based…
Category: Health Data
Data breach prompts University of Pittsburgh Medical Center billing contractor to contact 25,000 patients
Kris B. Mamula reports: Some 25,000 University of Pittsburgh Medical Center (UPMC) patients are being contacted by a Tennessee billing contractor following a data breach caused by a software bug that may have exposed names, addresses, social security numbers and other personal information. Kingsport-based Intellihartx LLC, which provides UPMC with billing and collection services, is…
Aadhaar, PAN card data of COVID vaccine takers’ leaked on Telegram via CoWIN portal: Report
Vivek Singh Chauhan A concerning report has surfaced revealing a significant data breach involving the personal information of citizens in the country, including their PAN and Aadhaar card details. The leaked data has been found on the messaging platform Telegram. Take a look at the details. CoWIN data breach: who has been affected and how?…
Intellihartx notifies 490,000 patients of Fortra/GoAnywhere breach (with updates)
Quick update: Intellihartx LLC in Tennessee is notifying 489,830 of its clients’ patients about the Fortra/GoAnywhere breach by Clop. The types of information that may have been compromised include name, address, medical billing and insurance information, certain medical information such as diagnoses and medication, and demographic information such as date of birth and Social Security…
Another hospital hit by ransomware: Columbus Regional Healthcare System in North Carolina hit by Daixin
Columbus Regional Healthcare System (CRHS) is a non-profit organization in North Carolina licensed for 154 beds. The Daixin ransomware group claims that on May 18, they encrypted the hospital’s servers after exfiltrating data and deleting backups. A Ransom Demand and Failed Negotiations A spokesperson for Daixin tells DataBreaches that three days after they encrypted the…
Ascension Seton reports data breach of websites
Olivia Aldridge reports: The Austin hospital system Ascension Seton experienced a data breach of two websites earlier this year, potentially exposing the personal information of certain users. Ascension Seton issued a statement Tuesday saying its legacy websites — Seton.net and DellChildrens.net — were breached on March 1 and 2. The hospital system said it has…