Today’s reminder that insider snooping can leave patients anxious, angry, and distrustful of ever sharing their protected health information again — even if they are not the patient who was victimized. Denis Campbell reports on an insider snooping case involving the UK’s NHS: The confidentiality of NHS medical records has been thrown into doubt after a “stalker”…
Category: Breach Incidents
Ransomware attack on PharMerica affected 5.8 million patients
While the Fortra/GoAnywhere data breach by Clop is shaping up to be the biggest, or one of the biggest, breaches affecting HIPAA-covered entities and business associates in 2023, an attack by Money Message on PharMerica is currently the largest single breach reported so far this year, with almost 6 million affected. On April 8, DataBreaches…
Bluefield University cyberattack affects employees, students, and some students’ parents (2)
Updated May 13: It appears that Bluefield U. has not warned students that the university’s system is still compromised and that the threat actor can see and acquire files. Yesterday, a student that DataBreaches will not name submitted a Virginia Tuition Assistance Grant application with his full Social Security number, date of birth, and other…
Vehicle data of over 2 million Toyota users been publicly available in Japan since a decade
Update: As more details emerge, this story gets even bigger in some respects. See this news coverage at: https://www.gizchina.com/2023/05/13/toyota-mishandled-user-data-by-publishing-over-2-million-user-info-online/ Daniel Leussink and Kantaro Komiya report: Toyota Motor Corp said on Friday the vehicle data of about 2.15 million users was left publicly available in Japan for about a decade from November 2013 to mid-April. […]…
NY: Richmond University Medical Center suffers ransomware attack; unclear if patient info compromised
Joseph Ostapiuk reports: Richmond University Medical Center (RUMC) in West Brighton experienced a recent ransomware attack that has triggered an ongoing network outage at the hospital, an official said. The extent of the breach, which has crippled online services at the over-470 bed facility, is not currently clear. The hospital is now working to both…
Methodist Family Health discloses breach potentially involving sensitive info on children
On May 3, Methodist Family Health (MFH) in Arkansas notified HHS that 5,259 patients were affected by a breach. On their website, MFH posted a notice on the same day. It begins: Methodist Family Health (“MFH”) experienced a data breach on March 4, 2023, that was first detected on March 6, 2023. After a thorough…