On June 20, DataBreaches.net reported that The Woodruff Institute in Florida had been attacked by “Grief” threat actors. At that time, the threat actors had dumped some files concerning business operations from the multi-location plastic surgery and dermatology practice, but other than about 50 laboratory test result reports for patients, there was not a tremendous number…
Category: Breach Incidents
Forefront Dermatology notifying patients and employees about ransomware incident
Update November 17, 2022: Forefront has reportedly settled a class action lawsuit for $3.75 million. Update: July 12, 2021: Post-publication, DataBreaches.net learned that external counsel for Forefront Management, LLC and Forefront Dermatology, S.C. reported the incident to the Maine Attorney General’s Office as impacting 4,431 patients. On July 14, however, this incident was added to…
Morgan Stanley reports data breach after vendor Accellion hack
People are first finding out NOW? Look at this timeline, provided by Sergiu Gatlan in his reporting on BleepingComputer: Guidehouse notified Morgan Stanley in May 2021. Guidehouse had been breached in January through the Accellion vulnerability. Guidehouse discovered the breach in March and the impact to Morgan Stanley customers in May. Why didn’t Guidehouse discover the…
Cyberattacks continue to interfere with vaccination efforts and municipal governments
Cyberattacks continue elsewhere as the two reports below show. One attack impacted the COVID-19 vaccination portal in the country of Georgia. An unrelated attack affected a municipality in Romania. Georgia Like many countries, Georgia has been dealing with a significant increase in number of new COVID cases after previously lifting some restrictions. On July 2,…
High Court Notice To Centre, State On Data Leak Allegations Against TrueCaller
The Press Trust of India reports: The Bombay High Court on Wednesday issued notices to the Union and Maharashtra governments, among others, over a Public Interest Litigation (PIL) that claimed Truecaller mobile application “shared” user data, breaching the law of the country. A bench of Chief Justice Dipankar Datta and Justice GS Kulkarni was hearing…
BJC HealthCare Data Breach Lawsuit Survives Motions to Dismiss
HIPAA Journal reports: A class action lawsuit filed by two former patients against BJC HealthCare over a March 2020 email data breach has survived two motions to dismiss. Leaha Sweet and Bradley Dean Taylor took legal action against St. Louis-based BJC HealthCare in September 2020 after being notified that their protected health information had potentially…