HIPAA Journal reports: HIPAA Danville, PA-based Geisinger Health Plan has discovered the protected health information (PHI) of some of its members has been exposed as a result of a suspected phishing attack on one of its business associates, Magellan NIA. Magellan NIA provides radiology benefits management services to the health plan, which requires access to…
Category: U.S.
Nigerian Citizen Sentenced for Role in International Cyber-Fraud Scheme
There’s an update to an arrest noted last year on this site. From the U.S. Department of Justice: A citizen of Nigeria residing in Atlanta, Georgia, was sentenced to 78 months in prison yesterday for his role in an international cyber fraud scheme, announced Assistant Attorney General Brian A. Benczkowski of the Justice Department’s Criminal…
White House kicks infosec team to curb in IT office shakeup
Sean Gallagher reports: An internal White House memo published today by Axios reveals that recent changes to the information operations and security organizations there have left the security team in tumult, with many members headed for the door. And the chief of the White House’s computer network defense branch—who wrote the memo after submitting his…
OCR Imposes a $2.15 Million Civil Money Penalty against Jackson Health System
Note: coverage of the breaches referenced below can be found on this stie by searching it for “Jackson Health System.” The following is a press release from the U.S. Department of Health Office for Civil RIghts: The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services has imposed a civil…
Ransomware Hits B2B Payments Firm Billtrust
Brian Krebs reports: Business-to-business payments provider Billtrust is still recovering from a ransomware attack that began last week. The company said it is in the final stages of bringing all of its systems back online from backups. With more than 550 employees, Lawrence Township, N.J.-based Billtrust is a cloud-based service that lets customers view invoices, pay, or…
Phishing Incident at Kalispell Regional Healthcare May Have Affected 129,000 Patients
Myers Reece reports: Beginning today, Kalispell Regional Healthcare is mailing out letters to nearly 130,000 patients whose personal information may have been involved in a data breach over the summer. Patients’ personal information may have included their name, address, medical record number, date of birth, telephone number, email address, medical history and treatment information, date…