The University of Vermont Health Network – Elizabethtown Community Hospital takes seriously the privacy and confidentiality of our patients’ information. Regrettably, this notice is regarding an incident involving some of that information. We are notifying individuals potentially affected by a recent data security incident in which, for a brief period of time, an employee’s email…
Category: U.S.
Dozens of SF State student accounts hacked in phishing attacks
Joshua Chan reports: Dozens of students were shocked to learn that they were suspended from SF State last week when an email appearing to be from California State University’s chancellor gave them the bad news. But when they clicked on a link in the email, the truth was revealed — they had just been hacked….
MN: Wright County finally notifying residents of data breach due to employee transferring data to his home computer
Courtney Godfrey reports: Taking work home with you sounds like something a hardworking employee would do, unless that work includes private, sensitive data like it did with one employee in Wright County. The county knew about the data breach for seven months before notifying possible victims. It wasn’t until FOX 9 filed a public records…
Contra Costa Health Plan notifying patients after discovering contractor had used falsified identity to get contract
It seems Contra Costa Health Plan discovered that a contractor that they had hired and who had access to EHR beginning on December 1, 2014 had used a falsified identity to get the contractor position. The position involved access to EHR as part of the contractor’s functions relating to utilization management. In a letter to…
Hackers fooled Save the Children into sending $1 million to a phony account
Todd Wallack reports: Save the Children Federation, one of the country’s best-known charities said it was the victim of a $1 million cyberscam last year. The Connecticut-based nonprofit said hackers broke into a worker’s e-mail, posed as an employee, and created false invoices and other documents, to fool the charity into sending nearly $1 million…
GA: Mind & Motion notifies 16,000 after ransomware attack
One of the newer incidents appearing on HHS’s public breach tool this week is a report from Mind & Motion, LLC in Georgia. Mind & Motion offers various types of therapeutic modalities. On September 30th, 2018, they discovered that their server had been attacked with ransomware. In a notification to patients, they write: We have…