Eyemart Express posted a notice of breach in local media: Farmers Branch, Texas, March 21, 2021 — Eyemart Express, LLC has discovered it was targeted by a cyber attack that affected certain Eyemart Express email accounts. Importantly, the attack did not affect Eyemart Express’ internal systems that store medical or billing records. Once the incident…
Category: Breach Incidents
MI: Mendelson Kornblum Orthopedic and Spine Specialists notifies 28,658 patients of breach
Mendelson Kornblum Orthopedic and Spine Specialists in Michigan recently notified 28,658 patients of a data security incident. The incident was reported to HHS on March 5 as a Hacking/IT incident. The practice writes, in part: On January 5, 2021, the Practice became aware that certain limited health information residing on one of its servers was…
Federal Police arrest hacker suspected of the largest data leak in Brazil
Arkady Petrov reports: The man suspected of being responsible for the largest data leak in Brazil was arrested this Friday, March 19th, in Uberlândia, Minas Gerais, during Operation Deepwater, of the Federal Police (PF). The action investigates the obtaining, disclosure and commercialization of data of Brazilians, including several authorities. The investigations found that, last January,…
Russian National Pleads Guilty to Conspiracy to Introduce Malware into a U.S. Company’s Computer Network
More big news out of DOJ yesterday: an update on a previously reported case involving Tesla: A Russian national pleaded guilty in federal court today for conspiring to travel to the United States to recruit an employee of a Nevada company into a scheme to introduce malicious software into the company’s computer network. According to…
CA: Data breach reported at Atascadero State Hospital
Paso Robles Daily News reports: –The California Department of State Hospitals (DSH) today announced that a DSH employee with access to Atascadero State Hospital data servers as part of their information technology (IT) job duties improperly accessed approximately 1,415 patient and former patient, and 617 employee names, COVID-19 test results, and health information necessary for tracking COVID-19. The breach…
21 months after a ransomware attack, a business associate breach first shows up on HHS’s breach tool. Here’s why.
HIPAA Journal reports on an incident that is illustrative of the challenges entities may face in the wake of a ransomware attack — determining whether a breach is a reportable incident or not. It also illustrates what may happen if an entity decides something is not a reportable breach but further investigation by the U.S….