Zach Clemens reports that Estes Park Health suffered a ransomware attack on June 2. No data was exfiltrated, but it was locked up, and after consulting with their cyberinsurer and IT people, they decided that they had to pay the ransom. “At that point in time we are looking at the patients we have internally,…
Category: Breach Incidents
A computer virus has thrown Philadelphia’s court system into chaos
Colin Lecher reports: Since May 21st, a virus has shut down Philadelphia’s online court system, bringing network access to a standstill. The problems started unexpectedly: suddenly, no one could seem to access the system to file documents. “It wasn’t working,” says Rachel Gallegos, a senior staff attorney with the civil legal aid organization Community Legal…
Project Svalbard: The Future of Have I Been Pwned
Troy Hunt writes that it’s time for HIBP to grow up.
Kingman Regional Medical Center investigating potential breach of PHI
Agata Popeda reports: Kingman Regional Medical Center reported a “security incident” on its website, which was shut down on April 8 and, after two months, still remains under construction. The hospital established that “the configuration of the website made it possible for unauthorized person(s) to view some information entered into the website by KRMC customers,”…
Cryptocurrency startup hacks itself before hacker gets a chance to steal users funds
Catalin Cimpanu reports: If you’re a cryptocurrency startup, would you face a huge backlash by hacking your own customers to keep their funds safe if you know that a hacker is about to launch an attack and steal their funds? This is exactly what happened yesterday when the Komodo Platform learned about a backdoor in…
Aetna first notifying 238 Virginia employees of BenefitMall breach that they’ve known about since December, 2018?
In January, 2019, we learned about a breach at Centerstone Insurance and Financial Services, Inc. d/b/a BenefitMall, a business associate. The breach reportedly affected more than 111,000 insurance members/covered employees of the vendor’s clients. HIPAA Journal covered the incident. Yesterday, Aetna issued a public notice related to the incident. Surprisingly, their notice discloses that by…