From the FAQ (both the FAQ and HTML version have occasional errors and label certain dates 2023 when they were 2022): 1. What happened? On December 23, 2022, the California Secretary of State (SOS) was notified by a researcher that the records they were provided to view contained records not older than 75 years. Pursuant…
Category: U.S.
Wilkes-Barre Career and Technical Center averts catastrophe from cyberattack
They could have headlined this story as “Good security practices pay off.” Michael P. Buffer reports: A cyber attack on a server at the Wilkes-Barre Career and Technical Center was discovered Wednesday, and antivirus and backup procedures “prevented a catastrophe” and “a lot of problems,” Administrative Director Anthony C. Guariglia said Thursday. The regional vo-tech…
ZOLL Medical notifying 1,004,443 patients of data breach — HIPAA
A number of large recent breaches have involved trackers or analytics, but not all large breaches these days involve trackers. ZOLL Medical is notifying 1,004,443 patients whose protected health information (PHI) may have been compromised in a recent data security incident that didn’t involve pixels or trackers at all. According to ZOLL’s notification, the Massachusetts-headquartered…
Highly sensitive files from Berkeley County Schools dumped by ransomware gang
In early February, Berkeley County Schools in West Virginia experienced a ransomware attack. On March 3, the district issued a notice on its website that stated their investigation determined “some data stored in Berkeley County Schools’ network may have been accessed that included employee Social Security numbers and direct deposit information.” That notice makes no…
Another ransomware attack results in a HIPAA breach: Florida Medical Center
In a notice issued yesterday, Florida Medical Clinic (“FMC”) confirmed that unauthorized individuals gained access to its computer network and used ransomware to encrypt files. FMC detected suspicious activity on January 9, 2023, and the incident was fully contained within hours. FMC states they were able to “proactively isolate the exposure.” DataBreaches has sent them…
Bone & Joint Clinic reports “network disruption” caused HIPAA breach of employee and patient information
Update of March 16: This was reported to HHS as affecting 105,094 patients. Bone & Joint has not replied to DataBreaches’ inquiry as to whether this was a ransomware incident or not. The Bone & Joint Clinic in Wisconsin has notified current and former employees as well as current and former patients of a data…