As it has done in past months, Protenus has compiled a monthly report on health data breaches in the U.S. that were disclosed during October. Their analyses are based on data and information provided by this site and blogger. Of special note: in the past two months, we have now learned of two incidents affecting at…
Category: Breach Incidents
WindhamCountyVT.gov site hacked, data dumped
On November 12, @CyberZeist announced on Twitter that the Windham County Sheriff’s Office had been hacked, and that not only was the self-described blackhat giving away the full database, but he was willing to provide backdoor access to the site: Giving away #Backdoor access to Windham County Sheriff’s Office(https://t.co/dlaEW3AvCc)- https://t.co/F7IfQPf97m #HappyWeekend — CyberZeist (@cyberzeist) November 12,…
TX: Austin Pulmonary Consultants notifies patients after new cleaners throw out records meant for shredding
It’s been a while since I’ve seen any reports of cleaning contractors accidentally disposing of patient records intended for shredding, but a recent report by Austin Pulmonary Consultants may be a useful reminder that all new cleaning vendors or contractors need to ensure their staff knows what is for disposal and what is for shredding. In…
ElSurveillance hacks and dumps two more dating sites; warns users about “Russian black hats”
The hacktivist known as ElSurveillance, whose operation is #EscortsOffline, is back with two more data dumps from dating sites. The first target was 24luv.com, where ElSurveillance claims he hacked and dumped 92,937 users’ email addresses and plain-text passwords. In a defacement on the site, ElSurveillance writes, in part: I compromised this website about four months ago and…
Washington State Government Breached, Administrator Accounts Dumped Online
Earlier today a hacker using the handle @CyberZeist announced a breach on the Washington state government website. Today’s breach was announced on twitter and posted to pastebin, and it contained 59 administrator accounts with user email addresses, encrypted passwords and salts. This breach appears to effect 8 different departments government. Departments affected. Washington State Patrol…
Indiana Health Coverage Program members notified of breach
HP Enterprise Services LLC (HPE), a Medicaid fiscal agent for the Indiana Health Coverage Program, recently notified HHS of the theft of 1,235 members’ information. The theft was discovered on September 16 and reported to HHS by HPE on November 7. According to a statement provided to media, a laptop bag stolen from an HPE employee’s car…