Florida Orthopedic Institute has notified the California Attorney General’s Office of a ransomware attack on April 6. Their notification does not indicate what type of ransomware was involved, or whether they paid any ransom. They are offering their patients identity monitoring services with Kroll, but note that they have no evidence that any patient data…
Category: U.S.
‘BlueLeaks’ Exposes Files from Hundreds of Police Departments
Brian Krebs reports: Hundreds of thousands of potentially sensitive files from police departments across the United States were leaked online last week. The collection, dubbed “BlueLeaks” and made searchable online, stems from a security breach at a Texas web design and hosting company that maintains a number of state law enforcement data-sharing portals. The collection…
AL: Tallapoosa County recovers from ransomware attack
Cliff Williams reports: Operations are slowly returning to normal after a weekend ransomware attack on servers at the Tallapoosa County Probate Office. Tallapoosa County probate Judge Talmadge East said no data or personal information was compromised in the Sunday morning attack and servers are allowing new business to be conducted. Read more on The Outlook.
New York Patients’ Data Breach Claims Sent Back to State Court
Mary Anne Pazanowski reports an update to litigation that stemmed from a breach in 2018 that was disclosed by Episcopal Health Services in November 2018 and then updated in 2019. A group of New York patients claiming that Episcopal Health Services Inc. failed to protect their private information from unauthorized disclosures can proceed in state…
Why weren’t patients told that their data was dumped publicly?
On May 13, DataBreaches.net reported that Ako ransomware operators revealed that they had attacked North Shore Pain Management in Massachusetts. The threat actors announced the attack and dumped some of the practice’s files when the medical practice did not pay their ransom demand. The data dump, consisting of more than 4 GB of more than…
UCSF updates progress recovering from ransomware attack
On June 4, I noted that NetWalker ransomware operators had reportedly added the University of California at San Francisco to their website where they name victims who have not paid their ransom demands. When I checked back today, I do not see UCSF still listed on NetWalker’s site, which is curious. But I also see…