Why are they calling them “customers” and not “patients?” I’m confused by this press release, below. Were these payment cards the patients’ payment cards/payment info? If so, it’s still protected health information of patients. I’ve reached out to the entity to request clarification. Update: A spokesperson says that the payment cards were not the patients’…
Category: U.S.
CT: Attorney General Tong Resolves Data Breach Investigation of Sabre Hospitality Solutions
(Hartford, CT) – Attorney General Tong, along with the attorneys general of 27 states, has entered into a settlement with Sabre Corp. that resolves an investigation into the 2017 data breach of Sabre Hospitality Solutions’ hotel booking system. The breach exposed the data of approximately 1.3 million credit cards. The settlement requires a payment of…
Roanoke College delays spring semester after cyberattack
Lawrence Abrams reports that Roanoke College in Virginia is delaying the start of spring semester while they continue to try to recover from what sounds like a ransomware attack. “On Saturday, Dec. 12, Roanoke College experienced a cyber event which impacts our ability to access files. The College’s IT staff disconnected the College’s network and…
Update: Ransomware downed UVM Medical Center systems, but no payment made
Katie Jickling reports: University of Vermont Medical Center’s IT chief revealed Tuesday that it was a ransomware attack that downed the hospital’s online systems in October. Jickling’s article provides a helpful update from what happened to how things are going with restoration. The hit was obviously a serious one, as information on 1,300 servers was encrypted, and the…
KY: Jefferson County PVA office hit by ransomware attack
Chris Otts reports: The Jefferson County Property Valuation Administrator‘s office has been hit by a ransomware attack, in which hackers are holding the agency’s data hostage for payment, PVA Colleen Younger said in an interview Monday. Younger told WDRB that the agency learned of the attack on Wednesday and had closed its office — where…
Securing Picture Archiving and Communication System (PACS) Cybersecurity for the Healthcare Sector:
NIST SP 1800-24 OCR is sharing the National Cybersecurity Center of Excellence’s (NCCoE) at the National Institute for Standards and Technology (NIST) SP 1800-24, Securing Picture Archiving and Communication System (PACS): Cybersecurity for the Healthcare Sector. This practice guide can help HIPAA covered entities and their business associates implement current cybersecurity standards and best practices to…