The HHS Office for Civil Rights (OCR) is sharing the following information to ensure that HIPAA regulated entities are aware of the resources available to assist in preventing, detecting, and mitigating breaches of unsecured protected health information caused by hacking and ransomware. HHS Health Sector Cybersecurity Coordination Center Threat Briefs: https://www.hhs.gov/about/agencies/asa/ocio/hc3/products/index.html#sector-alerts January 28, 2021 –…
Category: U.S.
BlackMatter Hits Grain Cooperative With Ransomware Attack
William Turton reports: Iowa-based grain cooperative New Cooperative Inc. was struck by ransomware in recent days and has shut down its computer systems as it tries to mitigate the attack. The attack occurred on or around Friday, according to Allan Liska, senior threat analyst at the cybersecurity firm Recorded Future Inc. The ransomware gang, which goes by the name…
PA: Horizon House notifying patients of ransomware attack in March
I do not recall ever seeing Horizon House in Philadelphia listed on any dedicated leak site used by ransomware groups, but according to a press release issued last week, Horizon House experienced a ransomware attack in March 2 and March 5 of this year that encrypted their files and allowed the unknown threat actor to…
Ashland City Elementary PTO President faces theft, computer crimes charges
Katie Nixon reports: A former Ashland City Elementary STEM Academy Parent-Teacher Organization (PTO) president is facing theft, forgery and computer crimes charges after an investigation led by the Tennessee Comptroller’s Office resulted her indictment Investigators were made aware of Jessica Tandy, 29, after former PTO officials reported the misappropriated funds. Read more on The Tennessean.
FTC’s Health Breach Notification Rule — Wait, did you say “FTC’s???”
What does it say when a HIPAA lawyer with years of experience says he didn’t know the FTC has a health breach notification rule? Seen on Jeff Drummond’s blog: ” The U.S. Federal Trade Commission issued a policy statement this week confirming that connected devices and health apps that use or collect consumers’ health information must notify users…
KY: Hacked student email threatens high school
Maddie McQueen reports: Late Sunday night, Fleming County High School had quite the scare when students and parents reported seeing an email and social media posts threatening a school shooting, said to happen on Monday. […] Police say the hacker is a 14-year-old girl at the school, however, police determined the threat wouldn’t be acted…