Attacks on revenue cycle management (RCM) firms and debt collection firms often provide criminals with a wealth of personal and protected health information because successfully compromising one billing vendor may give access to the sensitive data of numerous covered entities or clients. Horizon Healthcare RCM (“Horizon”) in Indiana is the latest RCM to disclose that…
Category: Breach Incidents
Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
Leela Stockley reports that a data security incident at a Northern Light Health vendor may have compromised some patients’ information. The vendor, Compumedics, provides sleep disorder diagnostic services for health system patients seen at Northern Light Eastern Maine Medical Center, Northern Light AR Gould, and Northern Light Sebasticook Valley Hospital. No report has appeared yet…
Texas Enacts Liability Shield From Punitive Damages for Certain Small Businesses That Adopt Cybersecurity Programs
Joseph J. Lazzarotti and Phillip A. Baggett of JacksonLewis write: On June 20, 2025, Texas Governor Greg Abbott signed SB 2610 into law, joining a growing number of states that aim to incentivize sound cybersecurity practices through legislative safe harbors. Modeled on laws in states like Ohio and Utah, the new Texas statute provides that certain businesses…
MNGI Digestive Health settles class action lawsuit stemming from BlackCat attack
MNGI Digestive Health, a multi-location gastroenterology practice in Minnesota, received preliminary court approval on May 7 to settle a class action lawsuit stemming from an August 2023 cyberattack. The incident was first reported on DataBreaches on September 25, 2023, but had been discovered by MNGI on August 25, 2023, after the BlackCat (AlphV) ransomware gang…
A militarily degraded Iran may turn to asymmetrical warfare – raising risk of proxy and cyber attacks
The following article by Nakissa Jahanbani of Penn State was originally published at The Conversation. Iran’s ability to launch surface-to-surface missiles has been degraded by Israeli action. Morteza Nikoubazl/NurPhoto via Getty Images Nakissa Jahanbani, Penn State Israel’s air assault on Iran has focused largely on degrading the Islamic Republic’s military and would-be nuclear capabilities. In…
McLaren provides written notice to 743,131 patients after ransomware attack in July 2024 (2)
On August 5, 2024, McLaren Healthcare became aware of suspicious activity affecting McLaren Health Care and Karmanos Cancer Institute computer systems. In an early statement about the incident, McLaren indicated that the attack affected IT systems across its 13 hospitals, cancer treatment centers, surgery centers, and clinics. In an August 12 update, McLaren reported that…