The chronology of Sea Mar Community Health Center’s responses to a massive data breach suggests that they may be first learning of data dumps because of notifications by DataBreaches.net or this site’s reporting of our discoveries. If true, what does that say about their security and incident response? A DataBreaches.net commentary. Since 2021, DataBreaches.net has…
Category: U.S.
MO: Tague Family Practice patient records stolen and leaked
Tague Family Practice (TFP) in St. Louis, Missouri is a primary care practice that strives to maintain the traditional care model of a doctor who spends time getting to know you and providing preventative care as well as care for acute problems or chronic conditions. On some date unknown to DataBreaches.net, the practice fell victim…
Kalispell hospital sued for patient data breach
Edward O’Brien reports: A Montana hospital is being sued for a data breach last year that compromised the personal information of over 200,000 patients. The lawsuit filed last month in Flathead County District Court alleges Kalispell-based Logan Health Medical Center lacked adequate cybersecurity to prevent the breach of patient names, phone numbers and insurance information….
Audit of the Connecticut Health Insurance Exchange Uncovers 44 Unreported Data Breaches
HIPAA Journal reports: An audit of Connecticut’s Health Insurance Exchange, Access Health CT, by the state auditor has revealed Access Health CT suffered 44 data breaches over the last 3.5 years that had not been fully reported and that sufficient steps had not been taken to safeguard sensitive data. The Connecticut Health Insurance Exchange acts…
Block confirms Cash App breach after former employee accessed US customer data
Carly Page reports: Block has confirmed a data breach involving a former employee who downloaded reports from Cash App that contained some U.S. customer information. In a filing with the Securities and Exchange Commission (SEC) on April 4, Block — formerly known as Square — said that the reports were accessed by the insider on December 10. “While this…
55,000 there, 190,000 there, 1.8 million there, and the breaches roll on…
Taylor Regional Hospital in Kentucky recently notified 190,209 patients of breach that they identified in January. An investigation determined that an unauthorized person had gained access to their network between November 2, 2021 and January 19, 2022, and obtained certain files from their systems containing patients’ names, and one or more of the following: address,…