DataBreaches really and truly does not understand how entities can take so long to investigate some breaches before disclosing them. If HHS feels that seven months from the first detection of an attack to notification is reasonable or acceptable, then let it change the regulations. If it is not acceptable and HHS wants entities to…
Category: Breach Incidents
Associated Eye Care Partners, LLC discloses vendor breach. Can you guess which vendor?
One of the breach notices that showed up in routine searches this morning was from Associated Eye Care Partners, LLC (“AEC”). The first sentence of the notification letter was: We are contacting you to inform you of a data incident experienced by a third-party vendor for Associated Eye Care Partners, LLC (“AEC”). My mind…
Bits ‘n pieces, Saturday edition
The following are four more incident reports DataBreaches has noted. It is not yet clear whether some of them involve patient data or not. CAROLINA BEHAVIORAL HEALTH ALLIANCE in North Carolina has been notifying law enforcement, state regulators, and patients about a ransomware attack they detected on March 20, the day after it began. Covered…
Health Aid of Ohio settles class action lawsuit stemming from 2021 ransomware attack
There’s one thing I am sure of: even if I fail to cover some breaches on this site, class action lawyers will still be busy suing entities. Top Class Actions reports a settlement in a suit involving a Health Aid of Ohio breach in February of last year. Although not reported on this site at…
Pro-Kremlin hackers Killnet hit Latvia with biggest cyberattack in its history
Oliver Moody reports: Latvia has come under the most intense wave of cyberattacks in its history, including a 12-hour onslaught on its public broadcasting centre, according to a senior Nato official. The Baltic state appears to have been targeted by pro-Kremlin hackers because of a series of assertive steps such as bringing back conscription and drawing…
A community health provider in Vermont and an addiction rehab organization in Pennsylvania fall prey to BlackByte
Two medical entities appear to have recently fallen prey to attacks using BlackByte’s ransomware, and both entities have now had some of their data leaked on BlackByte’s dedicated leak site. Lamoille Health Partners Lamoille Health Partners in Vermont serves the Lamoille County community’s healthcare needs. As such, they provide a range of comprehensive services that…