While LockBit was adding one physician-owned medical entity to its leak site, a relatively new group known as 8Base was adding another physician-owned medical entity to its own leak site. 8Base claims to have attacked Kansas Medical Center on June 18 and to have downloaded data on July 11. They claim they will publish the…
Category: Health Data
Another business associate attack results in theft of patient data — Panorama Eyecare
Panorama Eyecare in Colorado is a physician-owned firm providing business associate services to vision care providers: Earlier today, the firm was added to LockBit’s leak site with a claim that 798 GB of data had been exfiltrated from four of the firm’s clients: Eye Center of Northern Colorado Denver Eye Surgeons Cheyenne Eye Clinic &…
Lawsuit against cardiology practice alleges fraudulent charges from data breach
In many potential class action lawsuits stemming from a data breach, none of the named plaintiffs may have experienced any concrete injury such as identity theft or fraud that could plausibly linked to the breach. Here’s a lawsuit where’s the plaintiffs report concrete injury. Whether they will be able to link it to the particular…
HCA Healthcare releases statement while hacker puts data up for sale on deep web (update1)
On July 5, while some folks were cleaning up from fireworks and barbecues, DataBreaches broke the news that HCA Healthcare data was up for sale on a deep web forum if the company didn’t meet some unspecified demands. Since that time, DataBreaches has remained in some contact with the seller, who has occasionally provided additional…
It: Luigi Vanvitelli hospital hit by ransomware
On July 4, the Luigi Vanvitelli hospital in Italy posted a notice on its homepage that it had been the victim of a ransomware attack on July 1 and was investigating it. There has been no update since then. Italy24 reports, in part: Apparently, cybercriminals have stolen the e-mail passwords of university professors, doctors,…
Onix Group Faces 3 Lawsuits in Addiction Center Breach
On May 27, DataBreaches reported on two breaches that had been disclosed on the Friday before a holiday weekend. One of the two was a breach reported by Onix Group in Pennsylvania. As DataBreaches reported at the time: Their notice was provided on their own behalf and on behalf of Addiction Recovery Systems, Cadia Healthcare,…